Solved

folder access windows 2003 server

Posted on 2011-02-10
6
230 Views
Last Modified: 2012-05-11
i want to let Uchino to access full control on this folder.
but he is in MIBS group
how do i make exception?
Snap7.png
Snap8.png
0
Comment
Question by:Hiroyuki Tamura
6 Comments
 
LVL 27

Assisted Solution

by:Lukasz Chmielewski
Lukasz Chmielewski earned 31 total points
ID: 34865663
Add UCHINO to another group and set the group access to full.
Try that.
0
 

Author Comment

by:Hiroyuki Tamura
ID: 34865851
thank you.
are there any functions "exception"?
0
 
LVL 59

Assisted Solution

by:Darius Ghassem
Darius Ghassem earned 31 total points
ID: 34865986
If he is part of that group he will get those permissions. Permissions are cumulative which means if user has restricted access from one permission then this permission will be global even if you gave him more permission in another group
0
How our DevOps Teams Maximize Uptime

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us. Read the use case whitepaper.

 
LVL 9

Accepted Solution

by:
Aeriden earned 32 total points
ID: 34866365
The only exception to additive permissions is if DENY is used - that takes precedence over granted permissions.
0
 
LVL 5

Assisted Solution

by:9660kel
9660kel earned 31 total points
ID: 34874434
Create a new group for the required permissions, add the user to that group, and remove them from the group with access denied.

Another method is to grant permissions to the folder directly, but that is very messy in short order.
0
 
LVL 5

Expert Comment

by:9660kel
ID: 34874869
Just for clarity, explicit permissions override inherited permissions. On a local system, that includes deny permissions.

Any network transactions are subject to the most stringent applicable permissions. This means on a share or other network resource, a deny permission always overrides an allow permission.

Use of the deny permission should be very limited, and only where it is actually needed. Most of the time, removing the allow permissions is easier, and just as effective.
0

Featured Post

Free eBook: Backup on AWS

Everything you need to know about backup and disaster recovery with AWS, for FREE!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've always wanted to allow a user to have a printer no matter where they login. The steps below will show you how to achieve just that. In this Article I'll show how to deploy printers automatically with group policy and then using security fil…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…
Finding and deleting duplicate (picture) files can be a time consuming task. My wife and I, our three kids and their families all share one dilemma: Managing our pictures. Between desktops, laptops, phones, tablets, and cameras; over the last decade…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question