Assigning Delete Permission or deny delete permissions in Windows Server 2008 to certain users

We have a Windows 2008 server that we primarily use as a file server in a workgroup setting.  We have the following network share “J:\saved_forms”    We have about 100 users (e.g., User1-User100).

We would like only the administrator and User1 to be able to delete files from this particular folder.  All other users can read, modify and create files.  What is the best way to set this up using permissions?

Thanks so much,
Mike
jumptohighAsked:
Who is Participating?
 
Brian PierceConnect With a Mentor PhotographerCommented:
You will need to create a group - lets call it Deleters - and then add that to the ACL for the folder. Explicitly grant this group the delete permission (in the special permissions)

For Domain Users remove - DO NOT DENY the delete permission

(You may need to remove inheritance to do this)
0
 
jumptohighAuthor Commented:
KCTS

Do I need to assign an explicit deny delete to the Everyone Group in the ACL for that folder?

Thanks,
Mike
0
 
Brian PiercePhotographerCommented:
No - if you deny EVERYONE then the DENY will prevent ANYONE (including admins) fromn deleting the file - simply remove DELETE from Everyone - and/or (Domain) Users and Authenticated Users
0
 
jumptohighAuthor Commented:
KCTS

I cannot deselect DELETE from the everyone group because the check (and all checks) are grayed out. What do I need to do to make these items clickable?  

Thanks for your help.

Mike
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.