dedri
asked on
give a user or group read permissions on folder and all subfolders
I have a RootFolder in windows 2003 server, which is shared to everyone with read and write permissions, and security permissions are assigned all users- read/write permissions.
RootFolder has more than 2000 subfolders, this subfolders are having a lot of subfolders.
For more than half of the subfolder security permissions are assigned as follow: inheritable permissions from parent are removed, all users permissions are removed, and custom permissions are assigned(different departments and users are having different permissions assigned, thus only needed persons are having access to this subfolders or subfolders of subfolders).
And now I have to give to several users read permissions to all subfolders and files in RootFolder.
If I assign to this several users read permission on RootFolder, the permissions don't propagate to subfolders for which inheritable permissions from parent are removed. Of course there is an option "propagate permissions to subfolder " which can be used , but not in my case because I need only to propagate this permissions for a user or a security group, and not for all listed in security tab of RootFolder, i have to remind that all users are having read/write permissions assigned to RootFolder and if i choose propagate this will overwrite everything and all users will have access to all subfolders which is bad.
Is there any way to give a read permissions for a user or security group to all folders and subfolders in RootFolder?
RootFolder has more than 2000 subfolders, this subfolders are having a lot of subfolders.
For more than half of the subfolder security permissions are assigned as follow: inheritable permissions from parent are removed, all users permissions are removed, and custom permissions are assigned(different departments and users are having different permissions assigned, thus only needed persons are having access to this subfolders or subfolders of subfolders).
And now I have to give to several users read permissions to all subfolders and files in RootFolder.
If I assign to this several users read permission on RootFolder, the permissions don't propagate to subfolders for which inheritable permissions from parent are removed. Of course there is an option "propagate permissions to subfolder " which can be used , but not in my case because I need only to propagate this permissions for a user or a security group, and not for all listed in security tab of RootFolder, i have to remind that all users are having read/write permissions assigned to RootFolder and if i choose propagate this will overwrite everything and all users will have access to all subfolders which is bad.
Is there any way to give a read permissions for a user or security group to all folders and subfolders in RootFolder?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
hello friends,
both command are working subinacl and cacls,
could you tell me what is the command if i want to revoke this access
both command are working subinacl and cacls,
could you tell me what is the command if i want to revoke this access
you use the same but with revoke
http://windowsitpro.com/security/removing-user-or-group-s-permissions
http://windowsitpro.com/security/removing-user-or-group-s-permissions
subinacl /subdirectories c:\testfolder\* /revoke=example\USER
subinacl /subdirectories c:\testfolder\* /revoke=example\GROUP
subinacl /subdirectories c:\testfolder\* /revoke=example\GROUP
cacls c:\folder /e /t /r users
Coralon
Coralon
ASKER
10x
icacls is more powerful.