Background: upgraded Server Info Structure from 2008 r2 to 2012 (Not R2). converted old AD and domain onto new system then using Account with admin rights lets call it "Scott1" i created file structure and setup secuitry permissions. (thinking back i should have just done with with Admin account...) this is all setup on 1 Terminal server whtat also holds the File server (small office low budget)
Issues: Random Secuity issues where users cant access folders randomly. issue is somtimes NTFS secuirty based then suddely it is Network Shareing secuitry...
Example 1: Scott1 acceses a maped drive O:companies from his local pc now it comes saying he dont have secuirty access press contune to enter. (which makes NTSF secuitry entry for Scott1) then he can enter. remove the entry for scott1 and confirm the administrators group which scott1 is a part of has asscess and same issue still happens.
When he login to the server and use map drive from there same issue but when he manualy access the folder he can get inside
(network secuirty right?)
example 2. next day scott1 gose to access the O drive all seems to be working dose not ask for any permissions. check folder secuitry and no changes scott1 is not there. remoto into TS and confirm works there.. but when scott1 gose to direct folder path it
says Dont have access....
(NTFS Secuirty right?)
Example 3. cant access maped drives from local computer but when they remote into server they can access maped drives...
(issue with local pc right?)
Example 4. can access maped drives from local computer but not when they remote to the server.
(issue with server account right?)
Example 5. Just recently i noticed that the administrator account that AD has no longer has the rights to restart or turn off servers... (wtf)
Trouble shooting: every time this issue happens i check the 3 things can they access it thru maped drives on local and server. can they manualy navigate to the server folder by network or directly on TS/fileserver.
I have checked the Groups to make sure they are all assigned correct promissions. i have also checked memberhsips for effected users no issues there they have no loop premissions and have right access.
i have restarted all the servers
Restarted users computers.
Remade user accounts.
downloaded and run a NTFS permissions dyo tool to check if there was any issues in the permision path to target files..
Conclusions: Ether there is a Virus i have never heard of before targeting permissions or there is somthing wrong with ether 2012 permissions or the AD corrupted in transfer from 2008 r2. the fact that one second it is a network permissions then the next NTFS..
what ever is happening is realy starting to cause me headaches.