Re: How to set this Folder security
- From: "Roger Abell [MVP]" <mvpNoSpam@xxxxxxx>
- Date: Thu, 5 Oct 2006 18:54:58 -0700
Since on the QA parent folder of Magic you have explicitly
stated that GroupA can delete folders within QA you need
to "override" that. There are two ways. First, my preferred,
is to go into the NTFS permissions on Magic and in the
Advanced view uncheck the spec for it to inherit permissions.
You would probably want to select Copy of permissions, and
then edit these so that the GroupA grant is like that you had
granted on QA. The other route would be to leave Magic
inheriting permissions but to add a new ACE that Denies
GroupA Delete for This folder only.
I prefer the first way as use of Deny can become complicated
all too fast, especially if the Deny gets inherited onto substructure
and/or files.
"cisconoobie via WinServerKB.com" <u26219@uwe> wrote in message
news:6755825a42dcf@xxxxxx
I have a folder named QA that is inheriting the following permissions:
Domain Admins - Full
Authenticated Users - Read & Execute
I manually add Group A for read, execute and special permission ( I enable
delete subfolders and files) I make sure Delete is unchecked.
Now I create "Magic" folder inside QA and I want to make sure Group A has
Delete priviledges for subfolders and files of Magic but I dont want group
A
from deleting the "Magic" Folder.
How do I do that?
--
Message posted via WinServerKB.com
http://www.winserverkb.com/Uwe/Forums.aspx/windows-server-security/200610/1
.
- Follow-Ups:
- Re: How to set this Folder security
- From: M. Burnett
- Re: How to set this Folder security
- References:
- How to set this Folder security
- From: cisconoobie via WinServerKB.com
- How to set this Folder security
- Prev by Date: Re: Can I push EFS to client folders?
- Next by Date: Re: NTFS Permissions for public share
- Previous by thread: How to set this Folder security
- Next by thread: Re: How to set this Folder security
- Index(es):
Relevant Pages
|
