I know my question really isn’t a question…. but I really can’t think of another way to ask/post it without it being long and not making any sense.
We have a Windows Server 2008 that we recently migrated to as our main file sharing server. On initial setup, it looks like two of our domain groups were added to the local Administrators group: domain admins and domain users. When we copied the files over and re-setup the permissions, we deleted the local Administrators groups from the root of all drives and parent folders.
However, now when we create a new folder in a drive, the local Administrators group is added to the security and says that is inherited from the root of the drive. How can that be? As you can see, this is an issue since the domain users is apart of the Administrators group, they can see these folders even though they shouldn’t be able to.
We have our server 2003’s set up this way and we have had not ran into this issue. What’s different about the file sharing with server 2008 that we aren’t seeing? Where is the local Administrators group root access and how can you disable it?
I appreciate any feedback.. I’ve been looking into this for weeks now and anything I find doesn’t work or exactly fit the issue we are running into.
Thanks!
