server not obeying security settings

all of the sudden, my server is letting all the users read/edit all documents on the file and print server regardless of what group they belong to.
Anybody else seen this?

 

youre not giving much info here.
are you using win server 03? Group policy? any events logged that catches your attention?

 

I'm using a windows 2003 server. With active directory. I've setup a shared folder with subfolders and each subfolder has it's own group that it belongs to. My problem is that for example. I have an accounting folder and only give right to the accounting group, however, now the operations group can see the contents of the accounting department and visa versa.
I do see an erros in even viewer that says the following:
event id 1864
the local domain controller has not recently received replication information from a number of domain controllers. The count of domain controllers is shown, divided into the following intervals.
more than 24hrs
1
more than a week
1
more than a month
1
more than two months
1
more than a tombstone lifetime
1
tombstone lifetime days
60

let me clarify that this domain server is a remote server at one of my remote sites. all my users at all my other sites are working fine, except for this one. I have remoted into the server and checked security settings locally and they do match what I see on my active directory settings via the domain.

Let me know what other information I can supply you with. Thanks in advanced for caring.

 

are all your group policies that restrict users in certain group hosted on the server at another site? it seems to me that the DC at the site youre having problems with is not replicating with the DC that hosts the group policies. The users may be able to log in, but the gpos are not being applied to their profiles which may allow them access to anything previously restricted by group policy.

you might try to force a replication by going into sites and services on your DC, expand sites, servers, and any servers you see listed. click ntds settings and the server will come up in the right hand side. right click on that server on the right, and click replicate now. if you cant replicate, you have WAN problems.

 

I've created accounts and made changes to accounts on one, force replication, and they do sync up. anything else you can think of?

 

the accounts didnt end up in some admin group or anything? without being there its kind of hard to say. look more in depth to that error message. did that occur around the same time as the problem your are now having?