Re: Permissions issues
- From: "Roger Abell [MVP]" <mvpNoSpam@xxxxxxx>
- Date: Fri, 16 Nov 2007 15:59:42 -0700
The definition of your Users group likely contains either
Authenticated Users or Interactive or both. Either of those
will make an admin account that has logged in locally a
member of Users.
Roger
"dima" <dima@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:DCEB41D6-D4E2-473D-B10A-BF6247519680@xxxxxxxxxxxxxxxx
Fair enough, but the question remains... why does setting Deny all on the
local Users group affect the local Administrator account? I've got a
similar
situation where the Administrator user is not part of Users group,
directly
or indirectly, yet applying Deny permissions to the latter affect the
former.
Thanks in advance,
--
dima
"Shenan Stanley" wrote:
ThomasAJ wrote:
I'm a newbie to W2003.
I want to stop ALL users (except me the Administrator) from even
looking at the contents of a folder.
I set the 'Users' group permissions to Deny/Full Control. This
ticks ALL the deny boxes. Fine.
BUT as the admin guy I also cannot look at the folder. I look at the
folder's permissions for Administrators and the ALLOW column has
all the boxes ticked but in grey. What am I doing wrong?
Just eliminate the "users" group from the permissions at all and give
administrators full.
No reason to start diving into the Deny permissions.
In other words - for the folder permissions in questions - the only
users/groups listed at all should be administrators with Allow FULL
permissions and it should be in effect for that folder and all
sub-folders.
--
Shenan Stanley
MS-MVP
--
How To Ask Questions The Smart Way
http://www.catb.org/~esr/faqs/smart-questions.html
.
- Prev by Date: Re: Folder permissions - deny users, allow administrator
- Next by Date: Re: Security Toolbar 7.1
- Previous by thread: Folder permissions - deny users, allow administrator
- Next by thread: How to remove the digital signature of a .exe file?
- Index(es):
Relevant Pages
|
