file permissions 101 - give some users access to only 1 folder among a bunch
on an Essentials 2012R2 server, if it matters, there's a share, lets call it A (\\server\a).
In there are a bunch of folders, lets call them 1, 2, 3, 4, 5, 6
Most everyone should be able to access all the folders.
there's a group that should only have permission to access folders 3 and 5
How would you do that ?
Conceivably, over time, they may create folder 7, 8 and 9. That limited group still should only have access to folders 3 and 5.
thanks!
In there are a bunch of folders, lets call them 1, 2, 3, 4, 5, 6
Most everyone should be able to access all the folders.
there's a group that should only have permission to access folders 3 and 5
How would you do that ?
Conceivably, over time, they may create folder 7, 8 and 9. That limited group still should only have access to folders 3 and 5.
thanks!
one sets ntfs or share permissions group policy has nothing to do here.
ntfs permissions inherit from the folder above unless told to not inherit by explicitly editing the permissions. So if you create a folder then you have to edit the permissions to remove access for these users (it really should be a group)
If you enable Access Based Enumeration then a user will only see folders/files that they have access to and not get the access denied message.
ntfs permissions inherit from the folder above unless told to not inherit by explicitly editing the permissions. So if you create a folder then you have to edit the permissions to remove access for these users (it really should be a group)
If you enable Access Based Enumeration then a user will only see folders/files that they have access to and not get the access denied message.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
> they may create folder 7, 8 and 9. That limited group still should only have access to folders 3 and 5.
Sounds conflicting. Is "they" the restricted group just allowed to 3 and 5? Yet, they can create 7 8 and 9?
Sounds conflicting. Is "they" the restricted group just allowed to 3 and 5? Yet, they can create 7 8 and 9?
Sorry. I meant the unrestricted users make more folders. Those new folders should inherit a 'don't allow the restricted people' into them.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
thanks
See URL for more information on Group Policy
https://technet.microsoft.com/en-us/library/cc725828%28v=ws.10%29.aspx
Hope this helps,