Click here to get back home

NTFS Permissions
 HomeNewsGroups | Search | About
Login Password
Register Now!
 microsoft.public.windows.server.security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content
Subject Author Date
NTFS Permissions stephany_2000 02-20-2006
`--> Re: NTFS Permissions Roger Abell [MV...02-21-2006
Posted by stephany_2000 on February 20, 2006, 7:11 pm
Please log in for more thread options
 On our Windows Server 2003, SP1 member server, we have created a hidden,
shared top-level directory. Below there we created department directories.
We have set the share permissions on the top-level share to Change and Read
for Authenticated Users. Then we created the department directories. Those
directories are not shared. How do we inhibit the deletion and move of the
(department) directory? NTFS permissions will be set using ALGP, but users
with modify rights CAN delete the entire (department) directory. What are we
doing wrong?

Simply put how do we allow individual file deletion, but not the deletion of
the entire department directory?

Posted by Roger Abell [MVP] on February 21, 2006, 12:08 am
Please log in for more thread options
 If you click on Advanced in the NTFS security dialog you will
notice that you can highlight any ACE and then adjust the objects
to which it applies.
For example, you can grant at the top level to Authenticated Users
AU grant List for this folder (or this, sub, and files)
and then at a departmental level
AU grant Modify for Subfolders and Files

> On our Windows Server 2003, SP1 member server, we have created a hidden,
> shared top-level directory. Below there we created department
> directories.
> We have set the share permissions on the top-level share to Change and
> Read
> for Authenticated Users. Then we created the department directories.
> Those
> directories are not shared. How do we inhibit the deletion and move of
> the
> (department) directory? NTFS permissions will be set using ALGP, but
> users
> with modify rights CAN delete the entire (department) directory. What are
> we
> doing wrong?
>
> Simply put how do we allow individual file deletion, but not the deletion
> of
> the entire department directory?



Similar ThreadsPosted
ntfs permissions, ownership, adding permissions January 13, 2006, 2:03 pm
Share permissions conflicting with NTFS permissions May 18, 2006, 1:16 pm
NTFS Permissions August 16, 2006, 4:44 am
NTFS Permissions and subfolders December 14, 2005, 2:06 pm
NTFS , folder permissions ! Need Help January 4, 2006, 11:51 am
NTFS permissions quandary April 18, 2007, 4:25 pm
NTFS permissions/deny override bug? November 1, 2005, 7:56 pm
Minimum NTFS Permissions on the SystemDrive May 11, 2006, 12:10 pm
NTFS permissions not applying consistently June 21, 2006, 12:16 pm
NTFS Permissions for public share October 5, 2006, 2:08 pm

Our other projects:

Art Dolls, Fairies and Mermaids - Sunnyfaces.net

Roy's Linux, Programming and Search Engines messages

1-Script XML SitemapXML Sitemap