Solved

NTFS access to only one file

Posted on 2014-09-04
2
253 Views
Last Modified: 2014-09-10
using Windows Server 2003 Standard as a file server.  we have a consultant coming in and they need access to only one file on our file server.  'Allow inheritable permissions' is on.  Is there a way to give this user 'modify' permissions on only one file (ie. 'document1.doc') and nothing else?

\\server1\shared\folder1

document1.doc
document2.doc
document3.doc
0
Comment
Question by:jkimzlg
2 Comments
 
LVL 38

Accepted Solution

by:
Hypercat (Deb) earned 250 total points
Comment Utility
Create a separate login for that user that is NOT a member of any of the groups that are included in the inherited permissions.  Then give that user account Traverse Folder/Execute File permissions to the upper level folders and Modify permissions to only that one document. Also be sure that if there are any share permissions involved that those are set to Read for this user account.
0
 
LVL 21

Assisted Solution

by:yo_bee
yo_bee earned 250 total points
Comment Utility
I not sure you want to use Traverse/Execute setting because this will allow users to open files within the parent folder and if allowed to propagate to subdirectory then the user will be allow to open the files in the subs.

I would use List Content/read data instead then give the rights you want to the files or you can just give rights to a user account as describe by HyperCat to just the three files.  Then give them the complete UNC path to the three files.

So do not give any rights to consultant1 accept at the file level.
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Introduction You may have a need to setup a group of users to allow local administrative access on workstations.  In a domain environment this can easily be achieved with Restricted Groups and Group Policies. This article will demonstrate how to…
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now