We have a network share containing 50+ folders on a Windows 2003 server accessed by Windows XP clients, for general shared use. Share permissions are Full Control for Everyone, and NTFS permissions set to Read & Execute, List Folder Contents, and Read for the Users group. Sub Folders have the modify right set for the users group, so that users can create, read and delete files.
I need to restrict access to this share by a certain set of users (members of a single group) so that they can only read files from one folder.
How is this best achieved using NTFS permissions?