Administrator/Limited User security issues

From: GHS-Apathy (cel_ss_at_hotmail.com)
Date: 04/25/03 

Date: Fri, 25 Apr 2003 08:32:14 -0700

ok, heres a run down on how the computer is setup...

im a student at greenwich highschool in 11th grade. in
the computer graphics classroom that iam in, there are
multiple computers. only one of them has windows xp at
the moment, so im trying to figure out how to setup the
security on that computer so we can set it up on all the
rest of the computers when XP is put on them.

now on the one computer with windows xp, there will be a
total of 5 users. 1 admin, and 4 (limited access) users
with different levels of access to specific programs in
specific folders. there are 5 different programs, and
each level of user has a different level of access to each
program. 3 users might have access to program A while 2
users have no access at all.

i have setup all the accounts, and created dummy program
folders for testing the security. so i set permissions
for all the different users for the programs. everything
from there works fine, but there is a problem. if i go
into the user with the lowest level of access, i can still
goto the security tab and change access for all the other
users. i do not want anyone to be able to change
permissions but the admin. the users are only being
denyed/allowed access to 5 different folders all shared in
the shared documents folder. the ONLY problem i have is
that anyone can go in and add/remove and alter the
permissions for any of the users. i want only the admin
to have those rights. how do i change it so that no other
user can change any of the permissions. when i use
advanced permission editing from the admin account, i set
it so that the other user is not able to read/change/take
ownership of the folder. but when i go into the other
user, i try to view security on the folder and something
pops up saying that i cant change anything about the
permissions, but it says that i can "take ownership or
edit the auditing". so i go in as the limited user, make
myself the owner and now i can add/change/remove/edit the
permissions and security. now obviously most people wont
go this far to try to do all this, but if there is 1
person that will, then they can screw it up for everyone
else. how do i prevent this from happening. help me
again ---GHS-Apathy

Relevant Pages

  • Re: Password Protect IExplore
    ... You can protect the files and folders you store on your computer to make ... To set, view, change, or remove special permissions for files and folders ... clear the Inherit from parent the permission entries that apply ... To configure security so that the subfolders and files will not ...
    (microsoft.public.internet.explorer.ieak)
  • Re: Administrator/User security issues
    ... i have setup all the accounts, ... folders for testing the security. ... permissions but the admin. ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Missing Administrative Tools Option?
    ... You restrict access by assigning permissions to drives, folders and files. ... How Do I Get the Security Tab in Properties - XP Home ...
    (microsoft.public.windowsxp.security_admin)
  • convert.exe with /cvtarea: parameter during XP installation from network share
    ... drive is an NTFS drive _before_ the GUI part of setup starts, ... folders are inherited from the root folder. ... has higher security permissions like in NT4 or W2K, ...
    (microsoft.public.windowsxp.general)
  • Re: Administrator/Limited User security issues
    ... > folders for testing the security. ... > permissions but the admin. ... > ownership of the folder. ...
    (microsoft.public.windowsxp.security_admin)