Since we migrated our file and print services to Windows Server 2012, we had folder permission issues for admins.
We are using Robocopy tool to copy files and folders from another server but after that we are unable to open the newly copied folder until we click Continue in the "You dont currently have permission to access this folder" popup window.
I was also unable to copy the files and folders except the root folder using Robocopy, because I have received an Access Denied error message.
Server Manager console is a great tool that I have tried to use on Windows 8 and now Windows 8.1 but I had connection issues.
Once I have added couple of servers to manage via Server Manager console, during discovery I ran into the following errors:
Online - Data retrieval failures occurred
Once I have checked the details of this error message here's what I got:
%servername%: Configuration refresh failed with the following error: The metadata failded to be tetrieved from the server, due to the following error: The WinRM client received an HTTP status code of 502 from the remote WS-Management service.
I should mention that I was using Server Manager console under domain admin rights. Although I was admin I have added my account to the WinRMRemoteWMIUsers_ group on the server, but without luck.
I have received an error once I have changed access type for a website from the machine name to alias.
The message was:
“This page is accessing information not under its control”
It appears that the server name was hardcoded somewhere in this web application and to bypass this message here's what you have to do:
I was asked to setup user rights for a specific user to start, stop and restart services on a server. No additional permissions should be granted.
So, for a start I have added this domain user to Remote Desktop Users local group on the server so that user can connect to the server via Remote Desktop connection.
Now, we have to download a Microsoft Tool called SubInACL that we will use to grant permissions for starting and stoping services.
SubInACL is a command-line tool that enables administrators to obtain security information about files, registry keys, and services, and transfer this information from user to user, from local or global group to group, and from domain to domain.
Once we have download the tool, extract the .exe file and copy it to the server.