One of my fileserver is Windows 2003. I created a share on the d:\shares. The permissions are Domain Admins, Everyone (Full Access).
under d:\shares there is a folder called music.
I only want Domain Admins to have full access to d:shares\music and user1 to have read access only.
I right clicked on the music folder under d:\shares > security > adavanced > click on everyone > unchecked "Inherit from parent the permission entries that apply to child objects. In these with entries explicitly defined here". > edit > check on read permissions.
After the change the user1 can still add files to d:\shares\music.
I know if i take everyone out of d:\shares then it will work. I can't this way there are allot folders un d:\shares that requires full access to all users.