Re: NTFS Security based on COmputer Account

From: Joe Richards [MVP] (humorexpress@hotmail.com)
Date: 12/31/02 

From: "Joe Richards [MVP]" <humorexpress@hotmail.com>
Date: Tue, 31 Dec 2002 12:00:49 -0500

Assigning a read ACE to the ACL for computer A doesn't mean EVERYONE that
logs into Computer A can see the info. It means computer A itself can see
the info, I.E. Computer A's localsystem account.

There is no easy way to accomplish what you are trying to do with the native
system. 

--
Joe Richards
www.joeware.net
---
"sharath" <sharath@htmt.soft.net> wrote in message
news:034f01c2b0e8$808e35e0$8ef82ecf@TK2MSFTNGXA04...
> Hi,
> I am trying to give NTFS permission to folders based on
> the Computer Account. e.g. - If for folder A only Computer
> A and Domain Admins should be able to access. I am given
> the permission to this folder with Domain Admins and
> A$(computer account) as Read and also this folder I am
> able to see after accesing it's parent folder which is
> shared as read for Everyonoe.
> But when I access from A, it says permission denied. I am
> not logged in as Admin there, but I am logged in as a
> normal user who is not given any permission, but the
> Computer is given the permission.
>
> Can anyone tell me what the problem is.
>
> Sharath

Relevant Pages

  • Re: Exchange Server DST Patch
    ... If we give Send As permissions to the BES service account ... This is an issue because us 4 domain admins at work here can't send emails ... We have tried to manually reapply the send as permission to each domain ...
    (microsoft.public.windows.server.active_directory)
  • Re: dts and access db
    ... How can I setup permission for sa account under \\server\data folder? ... The service account for SQL Server ... >>already opened exclusively by another user, or you need permission to view ...
    (microsoft.public.sqlserver.dts)
  • RE: IIS anonymous access
    ... Since your asp page only needs to read the file from the unix folder, I'd suggest you can only grant the read permission to this domain account on ...
    (microsoft.public.inetserver.iis.security)
  • RE: NTFS permissions isses
    ... Effective permissions shows that Domain Admins and local administrator ... I tried to recheck “Replace permission entries…” etc and got an error ... I was not able to delete the folder until I unshared it and went to Owner ... is given modifyable control and Administrator and Domain admins have full ...
    (microsoft.public.security)
  • RE: User name password dialogue box
    ... If you site doesn't grant the permission to one account and disable the ... Right-click the 1033 folder to open the folder property dialog. ...
    (microsoft.public.sharepoint.portalserver.development)