Allowing all users Full Control to just one folder... associated risks?

I need to give all users Full Control to a directory on their local machines.  Let's say this folder is C:\MyFiles.
Does this pose a risk to:
1. the rest of the PC?
2. the network?
LVL 1
Sigh_ManAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

bradleys40Commented:
you should use authenticated users rather than everyone this will ensure that domain authentication is required prior to access
0
Sigh_ManAuthor Commented:
Thanks for your speedy response!
If I give Full Control to Authenticated Users, does that mean that they will have FULL control over that particular folder - or will they inherit only those rights afforded to them by the network administrator?
I need users to be able to create/delete/read/write/overwrite etc in relation to this one folder.
0
bradleys40Commented:
you can specify what access you give as long as you have ntfs you can use advanced permisions and choose whatever you want the access to be, is the file on a server or on their local machines
permissions.JPG
0
Redefining Cyber Security w/ AI & Machine Learning

The implications of AI and machine learning in cyber security are massive and constantly growing, creating both efficiencies and new challenges across the board. Join our webinar on Sept. 21st to learn more about leveraging AI and machine learning to protect your business.

Sigh_ManAuthor Commented:
on their local machines
0
Sigh_ManAuthor Commented:
Sorry -- it is an entire DIRECTORY - not just a specific file
0
bradleys40Commented:
you can specify the access to a folder/directory in the same way as at file level.
the permissions will need setting up on the top level folder and the pushing to the "children" objects ensure that that option is selected "replace permissions on child objects"
folder.JPG
0
bradleys40Commented:
Oh!! turn off inherit from parent too
0
Sigh_ManAuthor Commented:
So if full permissions are given to a directory in this way, would this compromise security for the whole PC or, worse still, the entire network?  (I appreciate that might seem obvious! this is the last posting!)
0
bradleys40Commented:
no it would only assign access to that folder and the underlying folders using authenticated users will ensure that domain security was applied so only people logging on with a valid domain account could access the data.
this will not effect the rest of the network just the local directory
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Sigh_ManAuthor Commented:
Great.  thank you for your help  :)
0
Sigh_ManAuthor Commented:
Swift response - thank you.
0
bradleys40Commented:
you welcome
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
OS Security

From novice to tech pro — start learning today.