User Permissions/Restrictions

Posted on 2007-10-04
Last Modified: 2010-04-18
The problem is that we have a departments directory which has all the files belonging to different departments e.g., Sales, Purchasing, Human resources etc. There is a particular department directory quality and with in that there is another directory  and within that directory there is 4 folders that I need to set user permissions.  Only two particular users should have full control the other users should only have read only rights.  

Ok heres what I done so far.

In the security tab, I have checked write to deny for users, and then Ive added the two users that should have full control and set the permissions to full control.  
The outcome is that all users can open the file as read only and they cannot modify the content which I want, however the problem is that the two users that should have full control basically dont have full control and files open for them also as read only.  I have tried numerous combinations but to no success.  I would be grateful if you could give me some advice, Thanks in advance.
Question by:IT795
    LVL 70

    Accepted Solution

    The problem is with the DENY. It is sufficient that a user/group does not appear on the security list to prevent them access. You should avoid using deny in all but extreme cases where there is no other option. The deny will alway take precidence.

    If is user or group has a deny in  place, then it does not matter what other prmissions they may have anywhere  - the deny will win - so if you deny write then write is denied - no mater what.

    LVL 70

    Expert Comment

    ... since all users are a member of users - and users is denied write - no one can write.

    Just remove the write permission from the users group by unticking the allow - but DO NOT DENY.

    Author Comment

    Ok so how can I restrict normal users form editing and deleting the files?  And yet let the other two users full control?

    Featured Post

    What Is Threat Intelligence?

    Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

    Join & Write a Comment

    Suggested Solutions

    Scenerio: You have a server running Server 2003 and have applied a retail pack of Terminal Server Licenses.  You want to change servers or your server has crashed and you need to reapply the Terminal Server Licenses. When you enter the 16-digit lic…
    A quick step-by-step overview of installing and configuring Carbonite Server Backup.
    To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
    Hi everyone! This is Experts Exchange customer support.  This quick video will show you how to change your primary email address.  If you have any questions, then please Write a Comment below!

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    21 Experts available now in Live!

    Get 1:1 Help Now