i am trying to setup a private folder on a shared volume with netware 3.2. i dedicated an entire volume for employees to store/share files in their own folders away from company information. each user in group everyone has all rights to the volume. what i want to do is setup a directory called documents where rights will restrict which folders can be viewed. but no matter what rights i set on that directory, everyone alwyas has access to whichever folder they choose. what i want to do is setup a trustee on that directory which takes away all rights on that directory for group everyone. then i will go through the directories inside that directory and designate which users have rights to each folder. i tested this and had it working until we made the server live and copied all folders from the old server to the server i was configuring. now everyone has rights to the entire volume and i cant take them away....can anyone help?

It sounds like to me that all you are trying to do is nothing more than what a HOME directory for everyone would do. And with giving everyone full rights @ the Volume level (using a group) then this is more than likely where they are still getting their full rights from. Rights have always been the hardest part of Netware for me to grasp. I would think that you could look @ one user to see what Group(s) they are a member of and the rights associated with that Group, what directories and volumes they are Trustee's of, and also what IR (inherited rights) they are receiving. I wish I could be of more help. But I have enough problems with this when I am sitting right in front of the Administrator console trying to track down how a user got a certain right to a directory or folder. V-Peace-V

In Netware, rights are inherited from the parent directory. By giving Everyone rights to the volume you cannot deny rights to the folders within that volume. Best practice is to create a "Public" directory on your volume and copy the contents of the volume into that directory. Remove the Everyone rights to the volume and apply those rights to the Public directory. Within the Everyone login script map your users to the folder and they will not know the difference. ex: Map U: \\Server\Vol\Public Now you can create other directories on the volume and control access to them. Capiche? For login script info check out Novell Login Script Conventions