Ya, tried this out, and while it does remove them from the admin group, they can still add/remove shares from other volumes.  We do have multistore licensed, so we are looking to go down that route.  Thanks for the suggestions all!

Thanks,
Scott


Internet
rkumar2@ugs.com

Sent by: owner-toasters@mathworks.com

10/11/2007 12:13 AM

To
KParker, Scott BELISLE, owner-toasters, toasters
cc
Subject
RE: CIFS share creation security question






Try putting them in Power User Group of the filer




From: owner-toasters@mathworks.com [mailto:owner-toasters@mathworks.com]
On Behalf Of Kevin Parker
Sent: Thursday, October 11, 2007 4:07 AM
To: scott.belisle@americas.bnpparibas.com; owner-toasters@mathworks.com;
toasters@mathworks.com
Subject: RE: CIFS share creation security question


Not without V-filer/multistore.
**Sent using wireless handheld...
please excuse any typo's or brevity**
Kevin Parker - NWN Corporation
kparker@nwnit.com
(m) 919.830.5819
(o) 919.653.4489
-----Original Message-----
From: "scott.belisle@americas.bnpparibas.com"
<scott.belisle@americas.bnpparibas.com>
To: "owner-toasters@mathworks.com" <owner-toasters@mathworks.com>;
"toasters@mathworks.com" <toasters@mathworks.com>
Sent: 10/10/2007 5:38 PM
Subject: CIFS share creation security question


Quick question, is there anyway to allow AD users/groups the ability to
create or delete cifs shares on specific volumes, but not others?  Say
we have an HR and Sales volume on the same filer.  Each has their own IT
personnel that create shares on each specific volume, but not each
other's.  Right now they are in the local admin group so they can
theoretically do whatever they please, but we are looking for a more
granular way to lock this down.  Any suggestions?
Thx!


This message and any attachments (the "message") is intended solely for
the addressees and is confidential. If you receive this message in
error,
please delete it and immediately notify the sender. Any use not in
accord
with its purpose, any dissemination or disclosure, either whole or
partial,
is prohibited except formal approval. The internet can not guarantee the
integrity of this message. BNP PARIBAS (and its subsidiaries) shall
(will)
not therefore be liable for the message if modified. Please note that
certain
functions and services for BNP Paribas may be performed by BNP Paribas
RCC, Inc.


________________________________
Note: This message and any attachments is intended solely for the use of
the individual or entity to which it is addressed and may contain
information that is non-public, proprietary, legally privileged,
confidential, and/or exempt from disclosure. If you are not the intended
recipient, you are hereby notified that any use, dissemination,
distribution, or copying of this communication is strictly prohibited.
If you have received this communication in error, please notify the
original sender immediately by telephone or return email and destroy or
delete this message along with any attachments immediately.