Solved

inheritable Permissions / "you can't remove _______ because this object is inheriting permissions from its parent..."

Posted on 2016-11-02
7
205 Views
Last Modified: 2016-11-02
At our company, we have a shared folder system.  There is a 2017 Budgets folder that my former boss set up so that everything inside this folder inherited the permissions of that parent folder.  I have a folder (of about 20 total) directly inside this Budgets folder in which I need to remove one specific user from.  Obviously, when I attempt to remove the user from the child folder, I get the "you can't remove _______ because this object is inheriting permissions from its parent" message.  If I click Advanced on the permissions of the child folder, un-check the Include inheritable permissions from the object's parent and click Remove, it wants to remove everyone's permissions (which I am trying to avoid).  Is there a better way to remove this one person without wiping everyone out and re-adding the ones that should have stayed?  Also, there are child folders/files inside this child folder that I want to inherit the new permissions I have modified.
0
Comment
Question by:4MIT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
7 Comments
 

Expert Comment

by:ManieyaK_
ID: 41870290
yes the best way to accomplish this is set up Security Groups
manage users / permissions using these groups instead of assigning individual user rights
0
 

Author Comment

by:4MIT
ID: 41870307
for this particular situation, its a little late for that.  not sure how this helps.
0
 
LVL 34

Expert Comment

by:it_saige
ID: 41870391
You fail to mention your second option when you remove inheritable permissions.  When you disable the inheritance, you can remove all of the permissions or add/copy/convert (depending on your OS) the current permissions that are inherited; e.g. -

Windows 8/8.1/10 & Server 2012 -Capture.JPGWindows Vista/7 & Server 2003/2008 -Capture.JPGWindows XP/2000 & Server 2000 -Capture.JPG
Choosing the add, copy or convert option will cause the OS to use the current inherited permissions as a template for new explicit permissions.  Once you have converted them to explicit permissions, you can remove the offending permissions.  You can also apply the explicit permissions to the child objects by selecting the appropriate option after you convert the inherited permissions into explicit permissions (this way removing the offending permissions will cause all child objects to update).

-saige-
0
Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

 

Author Comment

by:4MIT
ID: 41870408
Its a Server 2008 machine.  I did mention the remove option in my original post.  If I click Remove though, it takes out every user who was granted access via the inheritable permissions option in the parent folder.  I then will have to re-add everyone who should have access.  Was trying to avoid that unless it is my only option.
0
 
LVL 34

Expert Comment

by:it_saige
ID: 41870419
You want to use the 'Add' option.  This will take the current permissions that are inherited and turn them into explicit permissions (any existing explicit permissions are ignored).

-saige-
0
 

Author Comment

by:4MIT
ID: 41870426
Are you saying I should add everyone again through that Add option and then those will override the inheritable permissions?  That sounds simple enough.  Do  I need to remove the inherited permissioned users once that is done?  I just opened the permission entry for one of the users to add them.  there are a lot of options.  What all do I choose to give them modify/write permissions but not full control/ownership?
0
 
LVL 34

Accepted Solution

by:
it_saige earned 500 total points
ID: 41870437
When you chose the add option all of the permissions that you currently see will remain (they will just be explicitly set as opposed to inherited).  Once you do this, then you can select the option to apply the explicit permissions to any child objects.  Once applied, you will then remove the permissions associated with the user you are inquiring about.  This will remove the permissions from the current folder and all child objects.

-saige-
0

Featured Post

The Ultimate Checklist to Optimize Your Website

Websites are getting bigger and complicated by the day. Video, images, custom fonts are all great for showcasing your product/service. But the price to pay in terms of reduced page load times and ultimately, decreased sales, can lead to some difficult decisions about what to cut.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
Here's a look at newsworthy articles and community happenings during the last month.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question