Solved

Set permissions to child folders but do not give access to parent

Posted on 2009-05-06
4
677 Views
Last Modified: 2013-12-04
I am trying to give a user permissions to view a folder nested in parent folders in which I do not want them to see...ex.financial/data/sheets/application. I want them to view/change everything in "application" however no acces to anything above that folder. I also do not want have to change any permissions above that either because some folders have special permissions which I do not want to change. So what I did was shared the "application" folder to them and also added them to the security tab. I checked off do not inherit permissions (which I was told to do in another forum). However all this and they still cannot get to this folder. Is it possible to do this without screwing up or giving permssions to any above folders? THanks!
0
Comment
Question by:JessicaWatters
  • 2
  • 2
4 Comments
 
LVL 11

Expert Comment

by:snoopfrogg
ID: 24318778
It is definitely possible to grant them access to this folder and none of the folders above it.

Access to the folder is governed by the combination of share and NTFS permissions.  For read access, the user will need read share permissions and read NTFS permissions.  To access the shared folder, the end user should be going to \\servername\application (or whatever you chose to name the share).

If they are not able to access the folder, check to see if you have any deny entries in the NTFS ACL.
0
 

Author Comment

by:JessicaWatters
ID: 24318929
Ok so it works that is great...I was typing the full path. Now is there a way to map the user directly so they do not have to go to run and enter file path each time since I cant map it directly from the top level folder?
0
 
LVL 11

Accepted Solution

by:
snoopfrogg earned 300 total points
ID: 24319076
That's definitely doable.  There are two ways to go about it:

1.  Map the network drive to a drive letter manually:
 a.  My Computer -> Tools -> Map Network Drive

2.  Via a login script:
 a.  Go to your domain's sysvol folder and search for the end user's login script and add the mapping there.

In point 2, I'm assuming you have a domain.
0
 

Author Closing Comment

by:JessicaWatters
ID: 31578681
Excellent...clear and concise.
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

In a recent article here at Experts Exchange (http://www.experts-exchange.com/articles/18880/PaperPort-14-in-Windows-10-A-First-Look.html), I discussed my nine-month sandbox testing of the Windows 10 Technical Preview, specifically with respect to r…
Our Group Policy work started with Small Business Server in 2000. Microsoft gave us an excellent OU and GPO model in subsequent SBS editions that utilized WMI filters, OU linking, and VBS scripts. These are some of experiences plus our spending a lo…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now