Sharing and Permissions for Admin Users Home Folder

Similar Messages

• Accidentally removed from,sharing and permissions the admin user,and now i do not when i find the home icon at my computer i do not have permmission,and the mac does not works properly,lots of question mark at the dock ,please help

  accidentally removed from,sharing and permissions the admin user,and now i do not when i find the home icon at my computer i do not have permmission,and the mac does not works properly,lots of question mark at the dock ,please help

  I'm going to assume that since you deleted your hard drive and all its files, you had a backup, yes? If the backup has an OS (bootable clone), then you can boot into it by holding down the option key when you start up you iMac and choose the backup drive. Then use Carbon Copy Cloner or Super Duper to copy the files back to your iMac.

• Users and permissions for a small home server

  Hello community,
  I have been using Linux on the desktop for many years now, but unfortunately my knowledge about servers is very limited, almost non-existent. Therefore my question is most probably equally well fitting here and into the newbie corner.
  I'm trying to set up a little home server which should be in charge of following tasks:
  - CUPS print server in the local network
  - access to shared files through NFS in the local network
  - backup (again over NFS)
  - an Owncloud server
  - maybe a mail server in the long run (NSA, paranoia, etc. )
  For now I have set up the print server, the NFS server and was working on the Owncloud installation, when Owncloud gave me some errors with users and permissions. So I was led to the idea of rethinking the users and permissions on server. So far there is only the root user who may do everything. This seems like a quite unsafe configuration. I'd like to make it safer. First, the printer, the backup and the locally shared files should be accessible from the local network only. SSH access should also be accessible locally only. The Owncloud file folder should be accessible from the internet, but of course only for the Owncloud users registered to the Owncloud server.
  What is the best way to set up users and permissions for such a set up?
  Thanks for any hints,
  PhotonX

  Hi, i think it depends who are you serving for, if you are just serving for a small office or home server or a big organization. The following quick thinking just came to me:
  I think cups set automatically a system  user of its own, and runs as it, so no trouble there. Cups also has the option to set users and it uses the system users as default, i think it depends in in how many printers/users your have in your server.Users that can manage cups are in the lp group. 
  For nfs every user should have their home, samba is also a good option if you have  windows computer in your network and it integrates better with graphical file  managers like nautilus in the clients side, but it is a hassle to configure.
  You should run the web server (owncloud ) as it own user, maybe you can manage to set something up for owncloud in the filesystem, but owncloud uses a database, and the users for owncloud are stored in there, and they are not system users.
  You can configure ssh for local use only enabling the corresponding subnets in your /etc/sshd.conf and optionally but recommended you can set a firewall and permissions. You can use iptables but i prefer ufw for simple setup.
  I think you should read the wiki:
  https://wiki.archlinux.org/index.php/users_and_groups
  and the other respective topics in the wiki.
  Also as an advice i know that arch linux is a great distribution, but you have to do more work to mantain a stable server. I would recommend debian or another more conservative distro, but of course it is your choice.
  Last edited by hydrosIII (2014-11-06 06:26:45)

• HD Sharing and Permissions for User Wheel

  In Macintosh HD, there was a user called "Wheel" - Read Only. Scared that my system was somehow compromised, I deleted it. Now I realize "Wheel" is some sort of system group. My questions are:
  1) is this bad to have deleted it here?
  2) will it reappear or if not, how can i get it back b/c i assume it serves some function
  I found other posts that describe somewhat similar issues, but none talking about "wheel" being deleted off the HD. So my hope is that someone can help me answer this particular issue.
  Thank you, Bill
  ps The one thing i tried to do is repair disk permissions which didn't restore wheel to HD.

  bc270 wrote:
  hmm, i definitely didn't change any other permissions. but the i followed your last instruction, and HD is now back to admin read and write. thank you!
  two questions: 1) do you think my computer could have been compromised?
  most definitely not.
  2) in other directories like library and system i still have wheel , is this ok?
  yes. please don't change them. running repair permissions in disk utility will take care of wrong permissions on any other system folders.

• Set up user accounts from another Mac in Sharing and Permissions?

  Hello!
  I'm using GoodSync (app) to synchonize several folders between my MacBook Pro Retina and my iMac daily, via a scheduled task. GoodSync is installed on the MBP and the folders that I'm syncing between the two are connected via network shared. (See screen shot --- this is from the MBP)
  This method works, however in order to get everything to share properly, I had to set read and write permissions for all the groups (my username on the iMac, and the "everyone group") under Sharing and Permissions for every folder and it's contents. I'm concerned that "everyone" has the possbility to get into/ruin my files and folders. (see screen shot -- this is from the iMac)
  Is there anyway I could assign my MBP's user account to come up under Sharing and Permissions in the Get Info window (on the iMac) for all the folders I'm syncing between the computer, that way I could give just the MBP or just the MBP's user account the permission to "Read and Write" (on the iMac)? 
  Could anyone please tell me how or give me a more secure way of doing this? Really liking GoodSync over my local network because my data doesn't get copied to a cloud.
  Thanks for looking/contributing advice!
  Julie.

  You can create a sharing-only account in the users and groups system preferences, and use this as a means for establishing permissions and access to shared folders so syncing programs can access them. This account can be managed in the file sharing preferences just like any standard account, only that it does not have a local home folder and cannot be used to log into the system at the login window.

• When logging on to Windows 7 user gets a second mapped drive to the users home folder

  Morning,
  I'm working through an issue we've discovered whilst trialing Windows 7.  Our environment is setup as follows.
  Domain Controllers are Windows Server 2003
  Clients are Windows XP and Windows 7
  Windows XP and Windows 7 Clients are in seperate OU's
  All Windows XP Group Policies apply to Windows XP And Windows 7 clients, Windows 7 policies are then applied to Windows 7 clients after
  Windows 7 policies are setup such that any setting defined in a Windows XP Group policy is left unconfigured in the Windows 7 Group policy and only new Windows 7 settings have been set in Windows 7 Group Policies.
  We have users home folders mapped in their Account Directory account setting and set to H:\   to connect to
  \\domainname\dfs\home\username
  In addition we also as a fail safe map the drive via a login script using net use
  This has worked fine for years in windows XP, if Active Directory failed to map the drive for any reason then the login script would then map the home drive.
  In Windows 7 we have noticed a curious error.  We found after a period of a couple of weeks we suddenly started getting a new drive mapped.  This was identical to the H:\ drive mapping but was instead under drive Z:\.  In other words, the
  users home folder is mapped twice on h:\ and z:\.  This is not affecting any of the Windows XP users.
  I have gone through several logic reasons to ascertain why this has happened with the following findings.
  1. Originally we thought the error appeared when we tried out mapping the home drive using the mapped drives functionality new in Windows 7 group policy under preferences > windows settings > drive maps.  However, after forcing it to delete the
  Z:\ drive using this functionality we only succeeded in removing it with a group policy present to do it.  As soon as we removed that group policy the Z:\ drive came back
  2. Secondly i thought the reason we would be getting a z:\ drive when we haven't specified it anywhere is because active directory is trying to map to the H:\ Drive but it is already present therefore in Windows 7 it tries to map to a different drive. 
  Using Windows logic it tries the highest letter first which is unlikely to be in use i.e. z:\.  This makes sense because our logon script uses a net use h:\ command to map the drive and i believe by default these are set to perisistent.  Therefore
  the next time the user logs on H:\ is already mapped so the logic in Active Directory accounts maps the drive to Z:\ instead hence we end up with two mapped home drives.  To test this i altered the login script to set the drive maps to
  non persistent using persistent:no.  The logic here was that when the user logged off the drive would become unmapped so that when Active Directory tried to map the drive it would be able to use H:\.  Unfortunately this was not the case and
  Z:\ remains.
  3. Here is where i resolve the issue but i don't know why and is the bit i need answering.  If i go into my account on Active Directory and go to Profile and set the home folder drive letter to another letter i.e. change from H:\ to U:\,
  i get prompted to set full control etc and apply.  I then set the drive back from U:\ to H:\, again i am prompted for setting full control which i accept.  
  NOW when i login i no longer receive a Z:\ drive and only get an H:\ drive.  YAY, thats what i want, however, i do not understand why this is the case.  At first i thought it might be something in the active directory logic when i login to an XP
  machine and then login to a windows 7 machine.  IF you bear in mind that although i get a new profile in Windows 7 i still retain the same home folder setting.  However, after logging on an XP machine logging off then logging
  on a Windows 7 machine i still didn't get the Z:\ drive back. 
  I have tried creating a new user that ONLY receives our Windows 7 Group Policies and still they receive both an H:\ and a Z:\ drive which rules out the Windows XP policies conflicting with the Windows 7 policies.
  Does anyone have any ideas why i would get a second drive mapped to Z:\ logging into Windows 7 on a Windows Server 2003 domain? 
  Can anyone explain in more detail exactly how the Active Directory functionality works when you specify a connect to Drive letter for a users home folder?
  My current workaround is simply to add a net use command to remove the Z:\ drive.  I do not want to use Mapped Network drives using the new policy settings in Windows 7 RSAT because we have already found issues with it. 
  <input id="3daf20bf-4f4d-4a05-86da-2c30c205d580_attachments" type="hidden" />

  We had the exact same issue happen to us. No issue on Windows XP but Windows 7 mapped two home drives (F and Z). F was mapped during the login script and Z was being mapped by some unknown reason.
  We use Netapp for our storage and home drives and use a feature called CIFS Home Drive Mapping. This essentially maps a user to a folder not available through normal CIFS methods causing AD to error when setting the home drive. To get around this we use
  dsquery and dsmod to modify this attribute in the user account. This is the command we used...
  dsquery user -name %UserNameX% | dsmod user -hmdrv F -hmdir \\filer\$username$
  Notice there is no ":" after the F
  We determined the root causewas the value for the
  homeDrive attributefor the user account was set to "F" instead of "F:"
  When we updated our users to reference "F:" instead of "F" in their user, this problem was resolved.
  Use LDP or some other method to verify that the homeDrive attribute is set to "F:" (or any other letter) or you will have this issue.

• Strange Sharing and Permissions and Admin Users question.

  I am having problems printing and need to change the permissions and ownership on a library file
  My directions were to:
  [ The fiery cups filter needs ownership changed from admin to system (root) ]
  My secondary question is I am making the assumption that when someone refers to my "system (root)" that this is the same as "my name (me)" Yes?
  But my primary mystery question is
  As I went to change the permissions on the above top topic I noticed I had four choices.
  I am the only single user of this computer. My permissions are set to Administrator status.
  I apparently had a guest account enabled but I don't remember turning this on.
  On the get info window, at the bottom, under sharing and permissions, NAME and PRIVILEGE when I add - select a new user or group, I have:
  My account "my name (me)"
  "administrators"
  and *"firebird database"?*
  "everyone" is already there as a standard default.
  *I don't know what the **** "firebird database" is. It shows as a single user account.* My guest settings were enabled to connect to my shared folders, which I have turned off. Is this "firebird" part of Apple code or has something been compromised without me knowing?
  Anyone know? Thanks in advance.

  Root or System ownership is not the same as you. You are a restricted user. Root is an unrestricted user.
  If you have installed third-party printing software with incorrect permissions, then start by using Disk Utility to repair permissions. Do not begin changing file/folder permissions when you obviously do not know what you are doing as this could screw up your entire system.
  Firebird is a third-party database program that you must have installed. Obviously there is a problem with it. Either uninstall it or contact the developer for assistance.

• Can't use Ikea Home Planner because of Sharing and Permissions on plug-in

  I'm not sure where to submit this, or if the Apple support community cares, but I swear there's an answer to this. I am on a Macbook Air using Lion 10.7.2
  When I download the "NP_2020Player_IKEA.plugin" downloadable from this website http://kitchenplanner.ikea.com/AU/UI/Pages/VPUI.htm and try to mount the plug-in I get these errors...
  1. letting me know that the Ikea plug-in can't be moved because internet plug-ins can't be modified. So I click "Authenticate".
  2. Then I "Replace" and after this selection it's asks for the Administrator's password, and I give it.
  3. I follow the directions of this prompt, but am unable to change all of the permissions to "Read and Write"..
  4.Here is a screenshot of the "Get Info" window for the plug-in.
  I am unable to change "staff" and "everyone" to "Read & Write".
  So I just ignore it and restart Safari, hoping it will work. When I return to the Home Planner main page it automatically directs me to the download page again, prompting me to download the plug-in. From what I've read it should just open the home planner. I'm assuming it's because the plug-in was never mounted because I can't allow the sharing and permissions? I don't really know a lot about computers, can someone help? I know a lot of other people have had issues with this planner download, but I haven't found any answers about how to fix it. I'm an organization freak and really really would love to have this planner work. Google sketch-up is way too much work, and I don't trust grid paper and cut outs of furniture to convey the depth I need to see. But maybe that's my only option at this point?
  < Edited by Host >

  HERE SHOULD BE YOUR SOLUTION:
  Command+Space to bring up universal search, type in "Internet plug-ins"...
  You may get multiple choices, one referencing OS-X Lion, perhaps one ref-ing your personal login...Choose one (I started with the main - OS X Lion - one)...it will open on your desktop...If you're like me (or like the Droitetgouche), you've already tried to install it, and it gave you all that crap about "can't be modified"...etc...So delete any of those plug-ins (there may be a few, depending how many installs you've tried), then right-click the "Internet Plug-ins" folder and choose "get info"...I'm not sure why "D...che" (spelling ease) couldn't change permissions...maybe wasn't logged in as the admin?...but click the "lock" symbol in the bottom right corner, unlock it, change ALL permissions to Read & Write, then relock it.  Then open the IKEA dmg again and drag the item into the folder and it should work no problem.
  Then quit Safari, restart, and it should let you work.
  IF it doesn't, try going back to your universal search and choosing a different "Internet Plug-ins" folder...(Also, if you've tried the install, and you don't find any IKEA dmg's in the "Internet Plug-Ins" folder, you're likely in the wrong folder).
  Also, you may want to go back later and restrict the read/write permissions when you're done with IKEA.
  It worked for me, let me know if it works for you.

• Altered Permissions in users home folder

  Help! I seem to have screwed up my friend's installation of 10.3.9 by messing up file/folder access privileges in her home folder. I was helping her to get some work done and now I have created a monster...
  Briefly
  Access permissions on her whole Home Folder (the Admin account) seem to all be set to another user's permissions (not Admin) and I haven't been able to reset them all recursively using Get Info. I have had partial success but some things refuse to run.
  Before I run BatchMod on her whole home folder, is there anything I should beware of? I have seen similar but not identical problems here. More details below:
  What Happened
  In order to run some Leopard-only Apps on her TiBook G4 I booted from my external drive running 10.4.9 and all went smoothly until I needed to access files on her user account's Desktop (located at MacHD/Users/Her_Username/desktop) but didn't have permission. So I altered permissions for the desktop folder (and applied to underlying folders) with Get Info as the Admin running 10.4 from the Firewire drive...
  So far, so good, but when it came to restoring her access permissions, I coudn't see her Account name on the dropdown menu as it is not a user on the system I was running via the Firewire drive. So I restarted from her hard drive and, so far as I am aware, restored the Ownership and Permissions for her desktop and all files on it back to her Username.
  However...
  After restarting, her whole Home folder (i.e. not just the desktop folder) seems to belong to the other user account on her Laptop even though it still sits in her User folder. Loads of Apps have problems or won't run at all because they cannot access caches, plists and other data in her Library.
  Spookily, the trash is empty and stays that way - anything I trash vanishes for ever after a warning dialogue. Also, many apps think they are running for the first time, even though I have restored permissions within preferences. And Firefox refuses to run because it says there is another copy already running on the machine - which there isn't.
  The good news is that the System folder and other users are unaffected, though it is a mystery how the permissions got changed in her whole home folder (right the way down) to the name of another user. I'm not normally that stupid - and if I can do it one way, why can't I redo it the other way? Could I have provoked the system into throwing a tantrum?
  I have manually restored lots of things but have now decided on Batch Mod to save time (and sanity). I presume there will be invisible files that need changing to allow access to the trash and various registration data etc - can I do this with BatchMod and can I safely apply BatchMod to the whole Home Folder?
  Help please!
  Gaberdine

  Thanks, Niel
  I shall do that as soon as I get the chance (after backing up what I can just to be safe).
  FWIW I no longer think I am the responsible for all the changed access permissions because preferences (eg Dock), favourites and cookies seem to have been copied from the other user account too! For instance, the BBC homepage thinks she lives in a different part of England (as per the other User Account)!
  This is weird; I suspect the software that apparently caused freezes and hangs - and some permissions error messages - under 10.3.9 (hence my booting from the firewire drive in 10.4) is actually responsible for messing things up.
  Makes me feel kinda better but it's still me thats gotta sort it out...

• Sharing and permissions, custom access, cant get user to have read and write acess

  Hello everyone, i have a Netgear Stora NAS on my MAC, its located in the finder under shared, when i click on it i sign in with my user account and it gives me my folders to my stora, on one of my folder (Movies), i clicked get info and under sharing and permissions it told me i had custom access, i changed the privelages of the name,"Everyone" from no access, to read and write, when i did this, the name on tope of this (the main username) vanished. so ive been searhing on how to get my privelages back, i went to + and added new GROUP "admins" and it gave me my main username back but now with read only acess, when i try to change it to read and write it dissapears, PLEASE HELPPPPP, thank you!!!!
  <Edited by Host>

  I am not sure why you get that error. One thing you can do is a SMC reset then try to format it again. However that being said I'm not fan of WD external HD's primarily because we see a lot of troubles with them on Macs. Their internal HD's are fine so that narrows it down to their enclosures. If the problem persists I'd return the drive and buy one of the following:
  OWC (www.macsales.com) Mercury Elite Pro series
  Lacie Quadra d2 series
  G-Tech G series
  SMC RESET
  • Shut down the computer.
  • Unplug the computer's power cord and all peripherals.
  • Press and hold the power button for 5 seconds.
  • Release the power button.
  • Attach the computers power cable.
  • Press the power button to turn on the computer.
  PRAM RESET
  • Shut down the computer.
  • Locate the following keys on the keyboard: Command, Option, P, and R. You will need to hold these keys down simultaneously in step 4.
  • Turn on the computer.
  • Press and hold the Command-Option-P-R keys. You must press this key combination before the gray screen appears.
  Hold the keys down until the computer restarts and you hear the startup sound for the second time.
  Release the keys.

• Can't create an alias for User home folder for a second user

  Please help:
  I can't make an alias of a User home folder of a second user. I can successfully make an alias of a home folder of the first user. The computer says the folder is in use and to wait for some activity to complete, or that I don't have enough privileges. There are no activities happening and both accounts are administrator level. Is this a behavior of OS 10.5.6? I created alias for the two users before, but had unrelated problems and wiped the drive, re-installed 10.5.6 and now I can't do it.
  Much thanks and aloha - Rocky

  hi Petar,
  Wish it was that simple where i can just change the ID to ACT but unfortunately alot of our users like to hardcode there currentview and changing the scenario dimensions would take a big effort and alot of support work.  We had changed one of the dimension members before and we got phone calls asking why the report doesn't work for weeks.  Do you know if the NW version of BPC has that capability?
  Thanks,
  Elmer

• In my library/sharing and permissions there are two users i do not recognize. One is called fetching and one is called wheel.

  If I get info on my library I see under sharing and permissions a user called fetching and a user called wheel. I am not familiar with these users. Are they there for a reason?

  I see this question was asked last Oct, and had gone unanswered.
  I, too, have suddently noticed that all my folders on my external disk are giving permission to this "Fetching", and my system disk show permission for "Wheel".
  It is gratifying to know more than one person is seeing this, but does it mean we are both being hacked by the same source, or is there some unexplained legitimate reason they are there?
  Thank you for any further information.

• What does the term "Wheel" mean under sharing and permissions?

  Hi Everyone,
  When I select a folder (in Applications for example) and then click "get info", under the sharing and permissions section where accounts are listed with their respective permissions, the list usually starts with system or admin, then a term called "Wheel", then everyone. What is Wheel?
  Screen shot 2009-10-09 at 3.46.58 PM
  I have attempted to paste a screen shot here.
  Any thoughts?
  joe
  Screen shot 2009-10-09 at 3.46.58 PM
  Looks like I'm not having any luck pasting a screen shot...How does one do that?
  Message was edited by: K9Lover

  wheel is a system superuser group. By default only the root user belongs to it. Snow leopard has changed some permissions and now the preinstalled system apps in the main Applications folder have the group wheel (it was admin in Leopard). I don't know why they did it but this is now normal. where else do you see wheel?

• Accessing files in another Admin users home directory?

  In another topic thread http://discussions.apple.com/thread.jspa?threadID=798797&tstart=0
  I've posted how I somehow hosed my first Admin account, which was, foolishly, my primary working account.
  I've tried several things documented in the other thread to try to get back into the system under that login name, but with no luck. I created another Admin user, and tried using the Terminal window to creat a disk image of the original admin user home directories, but it failed with input/output error at reading a DMG file on the desktop.
  I've tried to access those folders via the new admin, but can't get in, says I don't have sufficient priveledges.
  Is there a way to change the priveledges for those folders, from single user, or current Admin terminal window? I have the password, so it's not like I'm trying to break in to someone else's files without permission.
  I've got some not-yet-backed photos and other files in the original account I need.
  Am I just screwed?

  Did you enable the root account on the system using
  NetInfo Manager ?
  Not sure what that is. I'll check it out.
  Have you considered using the OSX boot disc to reset
  the admin account password ?
  I do need to try booting from the cd, however, it doesn't appear to be a password issue - the password is accepted at the login prompt, a bad password typed in intentionally vibrates the box, the good password doesn't. Running admin utilities from the guest account with the ailing admin account name and password works. Still, it's worth a shot.

• How to have the network users home folder on the server

  I have snow leopard server up and running and I want to have the network users home folder on the server, instead of it being located on the connected computers. This way the users can access their folders from other computers in the network

  In addition you have to make the sharepoint able to be automaticly mounted. The manual say this is very important.
  But you should really read the announced manual. All the manuals all filled with step-by-step instructions for modifiing many preferences... That´s my experience!
  Now I´ve got a question, too...
  My OD-Master is bound to AD. I try to use win-Accounts for workin on mac. It work pretty good, by using an group-account. In this group-account I cennect the win-accounts to instruct all the restrictions I´ve set for user-accounts.
  But this way I can´t create a homefolder on a share...
  The share(netusers) is on the same server(mac-server2) like OD-Master is running. I´ve set the path for creating homefolders in Mobility option on "//mac-server2/netusers" for the group-account the AD-user is member of.
  Is it the wrong way?