Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

The Permissions Challenge

Posted on 2007-03-23
7
Medium Priority
?
260 Views
Last Modified: 2011-09-20
Windows 2k3 Sbs Server
Need to setup permissions as follows:
All paths are ficticious
the server folder d:\company is shared as "company" and mapped on to clients as g:
there are loads of folders under G:
1. we want to prevent people from creating, deleting and moving files and folders IN THE ROOT folder only.
2 the sub-folders of G\ should allow the creation, deletion, movng of files and folders as people wish.
3. one of the subfolders of G\ (g:\existing clients) must be set to prevent the creation, deletion and moving of files and folders within its root only. the subfolders of g:\existing clients should allow the creation , deletion and moving of files.
I have created a sec group called g_no_modify and added the said users to that group.
any help would be apreciated as i have already lost all my hair over this

Cheers

0
Comment
Question by:ivicker
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
7 Comments
 
LVL 16

Expert Comment

by:AdamRobinson
ID: 18779159
Apply the permissions from the first root.

Break the inheritance (but COPY the permissions downstream).

Change the permissions on the root to your restricted version.

Do the same process for your subfolder.

That should achieve what you're wanting.
0
 

Author Comment

by:ivicker
ID: 18781080
I have tried this already, but it still doesnt prevent me from partially moving a folder from the root to a child folder.
any other suggestions
0
 
LVL 16

Expert Comment

by:AdamRobinson
ID: 18782279
Unfortunately for "move" you have to set an explicit permisssion on the folders you don't want moved, which you'll have to stop from inheriting -- using deny to stop the move on the explicit NTFS permission.

0
 

Author Comment

by:ivicker
ID: 18842887
When I set the permissions, when I set the deny delete, it also prevents me from creating new folders. is there any way for this to be implemented at all?
Basicly I want my users to be able to create files and folders, but not delete them afterwards, does this make sense, is it possible? HELP!!
0
 
LVL 16

Accepted Solution

by:
AdamRobinson earned 500 total points
ID: 18843273
I do not believe what you are asking to do is possible under NTFS permissions.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've often see, or have been asked, the question about the difference between the Exchange 2010 SP1 version, available as part of Small Business Server (SBS) 2011, and the “normal” Exchange 2010 SP1 Standard. The answer to the question is relativ…
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
Video by: ITPro.TV
In this episode Don builds upon the troubleshooting techniques by demonstrating how to properly monitor a vSphere deployment to detect problems before they occur. He begins the show using tools found within the vSphere suite as ends the show demonst…
Have you created a query with information for a calendar? ... and then, abra-cadabra, the calendar is done?! I am going to show you how to make that happen. Visualize your data!  ... really see it To use the code to create a calendar from a q…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question