NTFS permissions for file copy and append but not read
Posted on 2012-03-29
I've set up a scheduled robocopy batch file to copy files modified in the last three days from XP workstations to Server 2008 directories over a VPN. I have the results appended to a log file on both sides.
I'd like to set the permissions on the 2008 directories to allow the files to be copied and the log files to be appended but I don't want the end users to be able to browse their directories. Ideally I'd like their directory to appear empty of subfolders but if it's not possible, it'll have to do. As of now I have each user set with special permissions (applied to subfolders and files) to:
List Folder/Read Data
Create Files/Write Data
Create Folders/Append Data
but I receive an access denied when using the batch file. Is this possible or should I just figure out a different way? FWIW I'm more interested in keeping unauthorized users from the directories, not so much the actual end users (I'm thinking someone that gets access to the machine when the normal user is away from keyboard).