Posted on 2006-11-10
I've got a few question that are failry simple for you guys (i hope)
If a user belongs to a few groups. For example in Sales he has Read, in HR he has Read, and in Engineers he has Write. therefore, his effective permission is Write.
1) So when it says His effective is Write, does that means he has the ability to Write even though he is in the Sales, and HR groups, correct ??
2) If a user who is a member of 2 groups (Engineers, who have NTFS permissions Modify, and Sales who have a permission of Write) and has been Denied Read to a certain folder (not the whole group, just him), then is his effective permission still Write?
3) If someone had been Denied Read to one resource, would this affect their ability to Read other resources i.e. If someone is Denied Read to Folder A. Will they be unable to read somethign in Folder B
Im sorry if these questions are obvious, but im going back to my Microsoft courses after putting them off for ages, and there are few things i've forgot, so I just need to clear few things up.
Thanks in advanced