Active Directory Separate Computers from each group !

May 5, 2012 at 11:38:10
Specs: Windows 7
Hello to everyone !
I have a question regarding Active Directory, Organizational Unit and Groups on a WIndows Server 2008 Standard Edition.
Is there a way to separate computers from seeing each other's share if they belong to the same Organizational Unit but different Groups but still users in the same group to see each others shares ?
Thanks in advance,

See More: Active Directory Separate Computers from each group !

Report •

May 5, 2012 at 12:51:48
Just give the groups the appropriate permissions to the shares and the directories involved.

This is so basic that I fear I may have misunderstood your query.

Report •

May 6, 2012 at 00:02:36
Hello ijack and thank you for your support !

In Active Directory I have 3 Organizational Units an inside each organizational unit I have some groups.
-Group 1 - user1, user2, user3.
-Group 2 - user a, user b, user c.
-Group 3 - user 4, user5, user6.
-Group a - user A, user B, user C.
-Group b - user D, user E, user F.
-Group c - user G, user H, user I.

-Group I - user I, user II, user III
-Group II - user IV, user V, user VI.
-Group III - user VII, user VIII, user IX.

The usernames are defined in USERS. For every user defined I have defined it's computer name in COMPUTERS.
What I am trying to do is :
Users from OU1, GROUP1 (which will be, let's say, DIRECTOR) should not have anything to do with users from OU1, GROUP2 ( JANITOR, for example ) and nobody else, of course, unless it's specified. User1 from GROUP1 should only see as network computers USER2 and USER3.
How do I achieve these without VLANs or separating the network, only from active directory ? Is it possible ?
Thanks again,

Report •

May 7, 2012 at 11:58:58
I think you need to get back and review the basics on networking. Then move on to Active Directory.

You have blended active directory concepts with file and directory management concepts with a mixture of AD and peer to peer networking thrown in.

"User1 from GROUP1 should only see as network computers USER2 and USER3."

This is an example of the peer to peer networking. Computers user2 and 3 would have to have something shared and assigned user1, as a local account, to these pcs. This is not part of Active Directory.

With AD access is to the servers shares. This is where you assign access or not assign access based on user or group usually not both.

For example director would have a folder assgined to s/he but since the janitor is not assigned the janitor has no access to the director folder.

Answers are only as good as the information you provide.
How to properly post a question:
Sorry no tech support via PM's

Report •

Related Solutions

Ask Question