This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.
COURSE of the MONTH
9 days, 6 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
How do you grant rights to a file
Posted on 2012-12-27
I need to grant a user rights to an Excel file. The problem is the file is in a "private" folder, and the user doesn't have access to the folder.
I have gone to the file level and granted him all rights except for Full Control and Special permissions. I then created a shortcut that points directly to this file and moved it to the user's desktop. The user clicks on the shortcut and is able to open, read and modify the file. The problem is, when the user tries to save the file he gets the following message: "Access Denied. Contact you administrator."
Obviously, I am missing something. The owner of the file doesn't want to move the file because of the sensitivity of the information inside those files. And I was also told that he would like to be able to do this with a couple more users (except they would have access to a different file).
Does anyone have a suggestion? These files are on the network (Windows Server 2003 R2).
I have gone to the file level and granted him all rights except for Full Control and Special permissions. I then created a shortcut that points directly to this file and moved it to the user's desktop. The user clicks on the shortcut and is able to open, read and modify the file. The problem is, when the user tries to save the file he gets the following message: "Access Denied. Contact you administrator."
Obviously, I am missing something. The owner of the file doesn't want to move the file because of the sensitivity of the information inside those files. And I was also told that he would like to be able to do this with a couple more users (except they would have access to a different file).
Does anyone have a suggestion? These files are on the network (Windows Server 2003 R2).
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2
2
- +2
7 Comments
Active 4 days ago
create a group in Active Directory place all the users in that group.
Give that group the rights needed for accessing the folder.
Need to share the folder
The folder can be shared an no one but the group can have access to this folder.
NTFS and Share permissions need to be set.
Give that group the rights needed for accessing the folder.
Need to share the folder
The folder can be shared an no one but the group can have access to this folder.
NTFS and Share permissions need to be set.
Its going to get very messy if you don't do it properly - the 'proper' way would be to create a new folder for each user (or group of users), assign the NTFS and share permissions on that folder and then put the file(s) in the appropriate folder(s)
Active 1 day ago
Hi.
If you don't want to move that file to a separate folder, you will need to grant access rights to the folder, too - that should be obvious. Simply share that folder and grant read access to that folder on both NTFS and share permissions and don't let the files inherit these permissions - that way, he will only be able to browse that folder but not read the other files' contents.
If you don't want to move that file to a separate folder, you will need to grant access rights to the folder, too - that should be obvious. Simply share that folder and grant read access to that folder on both NTFS and share permissions and don't let the files inherit these permissions - that way, he will only be able to browse that folder but not read the other files' contents.
You will need to give full control to "Everyone" group on the machine. Found this post on MSDN which talks about it.
http://social.msdn.microsoft.com/Forums/en-SG/windowssdk/thread/de213b61-dc7e-4f33-acdb-893aa96837fa
Moreover refer this link also
http://technet.microsoft.com/en-us/library/bb727008.aspx
Hope this works for you.
http://social.msdn.microsoft.com/Forums/en-SG/windowssdk/thread/de213b61-dc7e-4f33-acdb-893aa96837fa
Moreover refer this link also
http://technet.microsoft.com/en-us/library/bb727008.aspx
Hope this works for you.
If you give full control to 'Everyone' then you've just blown all your security away.
If you want to share files - then do it properly - create folders - put the files in the folders and set the NTFS and share permissions accordingly - by all means set the share permissions on the share to 'Everyone' and use NTFS permissions to tie down the security - but don't share your own private documents.
If you want to share files - then do it properly - create folders - put the files in the folders and set the NTFS and share permissions accordingly - by all means set the share permissions on the share to 'Everyone' and use NTFS permissions to tie down the security - but don't share your own private documents.
I want to thank you all for the feedback. Before all of this, I tried explaining to my boss the headache involved by not moving a file, keeping it in a private (secure) folder and granting rights so that only a particular user can get to it. It wasn't until he was made aware of all or your comments, that a light went on.
I have been given permission to move the file(s) to a "public" sub folder in his "private" folder. Thanks again for all the feedback!
I have been given permission to move the file(s) to a "public" sub folder in his "private" folder. Thanks again for all the feedback!
Featured Post
Managing Active Directory does not always have to be complicated. If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
This article shows the method of using the Resultant Set of Policy Tool to locate Group Policy that applies a particular setting.
Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed.
Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008.
Determine the location of the FSMO roles by lo…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses
Course of the Month9 days, 6 hours left to enroll
762 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.