?
Solved

Share or Security permissions?

Posted on 2008-10-09
3
Medium Priority
?
184 Views
Last Modified: 2013-12-05
Hi

I have a folder on a Windows 2003 server that I would like to share.

Do I need to set the permissions in Security, or Share>Permissions, or both?

And which ones take precedence?
0
Comment
Question by:kam_uk
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 17

Assisted Solution

by:Andres Perales
Andres Perales earned 400 total points
ID: 22680458
You need to set both, Share Permissions set to everyone full, then lock it down using the permission with the security tab...
the restrictive permissions alway take priority.
0
 
LVL 96

Accepted Solution

by:
Lee W, MVP earned 800 total points
ID: 22680484
The most restrictive settings win.

Because of that and for simplicity, you would generally only use NTFS permissions (Security).

Think of it like this:
The share is the doorway into the files and folders at that point.  Like large office building, once you get into the doorway, you have the ability to see EVERYTHING in EVERY OFFICE (through share level permissions

With NTFS permissions, you can adjust things at the FILE level (including the folders) so that Doors 1, 3,4 7,9,10, and 12 are only accessible to user A while user B sees 2,3,5,6,7,9,11,12 and User C sees everything.

To put another way, if you set NTFS permissions to EVERYONE:Full access, and share permissions to READ ONLY then your users ONLY have READ ONLY (It's the most restrictive)

If you set NTFS permissions so that EVeryone has Read Only except for you and your boss with FULL access but set the Share permissions to Read Only, then you and your boss STILL have read only - the share permissions are more restrictive.

If you set NTFS permissions so that EVeryone has Read Only except for you and your boss with FULL access but set the Share permissions to Full Access, then you and your boss have Full access and everyone else has Read Only.

Finally, If you set NTFS permissions so that EVeryone has Read Only to everything except the file "phonelist" which allows FULL access but set the Share permissions to Read Only, then NO ONE can modify the phone list because the share permissions are more restrictive
0
 
LVL 3

Author Comment

by:kam_uk
ID: 22685859
Thanks!
0

Featured Post

Ransomware Attacks Keeping You Up at Night?

Will your organization be ransomware's next victim?  The good news is that these attacks are predicable and therefore preventable. Learn more about how you can  stop a ransomware attacks before encryption takes place with our Ransomware Prevention Kit!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Let's recap what we learned from yesterday's Skyport Systems webinar.
If you're a modern-day technology professional, you may be wondering if certifications are really necessary. They are. Here's why.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Suggested Courses
Course of the Month10 days, 11 hours left to enroll

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question