Solved

How do I make it so that no one except the Administrators can see the Security tab in the Properties window of a Directory or file?

Posted on 2008-10-05
1
173 Views
Last Modified: 2013-12-04
I want to make it so certain users cannot see the security tab or be able to edit the security permissions.  How do I do that?  
0
Comment
Question by:michaelbphillips
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 11

Accepted Solution

by:
sysreq2000 earned 250 total points
ID: 22645485
Start Active Directory Users and Computers.
 
Right-click the domain, and then click Properties.
 
Click the Group Policy tab on the domain properties dialog box to view the default domain policy.
 
Click New. New Group Policy Object should appear in the list of objects. Rename this Policy to Remove Security Tab. Make sure this policy is positioned directly under the default domain policy.
 
Click Remove Security Tab, and then click Edit to start the Group Policy Editor.
 
Expand Computer Configuration, Windows Settings, Security Settings, and then click Registry.
 
Right-click in the left pane, and then click Add Key.
 
Paste the following key in the text box, and then click OK:
CLASSES_ROOT\CLSID\{1F2E5C40-9550-11CE-99D2-00AA006E086C}

Note that there may be a delay before you can proceed to the next step, and this is normal.
 
The Database Security Editor appears. You need to add the user or group that you want the Security tab to be removed from.
 
Change the permission on this key for the users and/or groups that you added in the previous step to "Deny Read." This prevents the user from being able to instantiate the needed components to display the Security and Sharing tabs. Click OK twice to complete the settings and exit the Group Policy Editor.
 
Click New. New Group Policy Object should appear in the list of objects. Rename this Policy to Remove Sharing Tab. Make sure this policy is positioned directly under the default domain policy.
 
Click Remove Security Tab, and then click Edit to start the Group Policy Editor.
 
Expand Computer Configuration, Windows Settings, Security Settings, and then click Registry.
 
Right-click in the left pane, and then click Add Key.
 
Paste the following key in the text box, and then click OK:
CLASSES_ROOT\CLSID\{40dd6e20-7c17-11ce-a804-00aa003ca9f6}

Note that there may be a delay before you can proceed to the next step, and this is normal.
 
The Database Security Editor appears. You need to add the user or group that you want the Security tab to be removed from.
 
Change the permission on this key for the users and/or groups that you added in the previous step to "Deny Read." This prevents the user from being able to instantiate the needed components to display the Security and Sharing tabs. Click OK twice to complete the settings and exit the Group Policy Editor.

And of course, credit where credit is due:

http://www.commodore.ca/windows/remove_sharing_security_tab.htm

0

Featured Post

Transaction Monitoring Vs. Real User Monitoring

Synthetic Transaction Monitoring Vs. Real User Monitoring: When To Use Each Approach? In this article, we will discuss two major monitoring approaches: Synthetic Transaction and Real User Monitoring.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Issue: One Windows 2008 R2 64bit server on the network unable to connect to a buffalo Device (Linkstation) with firmware version 1.56. There are a total of four servers on the network this being one of them. Troubleshooting Steps: Connect via h…
A quick step-by-step overview of installing and configuring Carbonite Server Backup.
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question