JSI Tip 9004. The Virtual Server Security Properties page on the Virtual Server Administration Web site displays multiple permission entries for the same security groups?

When you look at the Virtual Server security settings on the Virtual Server Administration Web site that is running Windows Server 2003, you see multiple permission entries for:

Administrators
Users
Power Users
Everyone
This behavior will occur if you check the Inherit from parent the permissions entries that apply to child objects. Include these with entries explicitly defined here. box on the Security tab of the \Documents and Settings\All Users\ApplicationData\Microsoft\Virtual Server folder.

NOTE: This check box is NOT enabled by default.

The behavior occurs because a Virtual Server file system object is owned by the user's group, and not by the user account. Checking the above option creates an additional ACE (Access Control Entry).

To workaround this behavior:

1. Logon to the Windows Server 2003 with administrative privileges.

2. Use Windows Explorer to navigate to the \Documents and Settings\All Users\ApplicationData\Microsoft\Virtual Server folder.

3. Right-click the folder and press Properties.

4. In the Virtual Server Properties dialog, press Security and Advanced.

5. Clear the Inherit from parent the permissions entries that apply to child objects. Include these with entries explicitly defined here. box.

6. Press Remove in the Security dialog.

7. Press OK and OK.



Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish