Re: NTFS permissions?
- From: Harry Johnston <harry@xxxxxxxxxxxxxxxxxx>
- Date: Tue, 24 Apr 2007 07:42:52 +1200
William Stokes wrote:
I read from 2003R2 server help that NTFS permissions are cumulative. So does this mean that if user has a read access to a file via Domain Users Group (to which he is a member) and Full Controll because of Creator Owner rights (which he is) the result is that this user has full controll to the file?
Yes and no. NTFS permissions are cumulative as you describe. However CREATOR OWNER doesn't count directly towards a user's permissions, it is only used in inheritance.
So if the permissions on the file say
Domain Users:R
CREATOR OWNER:F
the user will have read access. If the permissions were inherited from a directory, CREATOR OWNER should have been automatically replaced by the username, so it would look like
Domain Users:R
username:F
and the user would have full acccess.
I've been testing this scenario and it happens that the user seems to have full controll while viewing Effective Access tab in the file properties but he cannot rename the file.
You should also note that you need write access to the folder as well as the file in order to rename a file.
Harry.
.
- Follow-Ups:
- Re: NTFS permissions?
- From: William Stokes
- Re: NTFS permissions?
- References:
- NTFS permissions?
- From: William Stokes
- NTFS permissions?
- Prev by Date: Re: Group Policy and User restrictions
- Next by Date: Re: DELETING PASSWORDS IN EXCEL WORKBOOK
- Previous by thread: Re: NTFS permissions?
- Next by thread: Re: NTFS permissions?
- Index(es):
Relevant Pages
|
