Configuring Active Directory Users, Groups, and Folder Permissions in a Domain Environment
Domain Controller Setup: Configured the domain controller, ensuring that Active Directory Domain Services (AD DS) was active and operational.
User and Group Creation: Created four users in Active Directory:
Jwhite
Ksmith
Lgreen
Pbrown
Created four security groups to correspond to departmental access:
IT
Marketing
Sales
HR
Assigned each user to their respective group:
Jwhite → IT
Ksmith → Marketing
Lgreen → Sales
Pbrown → HR
Folder and Subfolder Setup: Created a top-level folder called Company Data on the file server. Inside Company Data, created the following subfolders, one for each department:
IT
Marketing
Sales
HR
File Share and Permissions Configuration: Configured share permissions for the top-level folder (Company Data) to allow network access for all users. Configured security permissions specific to each department's subfolder so that users could only access their department’s subfolder:
IT: Full control for members of the IT group.
Marketing: Full control for members of the Marketing group.
Sales: Full control for members of the Sales group.
HR: Full control for members of the HR group.
Verification and Testing: Logged into a second PC and tested the permissions by logging in with each user’s credentials. Verified that each user could access their assigned department’s subfolder and confirmed that no user could access another department’s subfolder.