Solved

inheritable Permissions / "you can't remove _______ because this object is inheriting permissions from its parent..."

Posted on 2016-11-02
7
243 Views
Last Modified: 2016-11-02
At our company, we have a shared folder system.  There is a 2017 Budgets folder that my former boss set up so that everything inside this folder inherited the permissions of that parent folder.  I have a folder (of about 20 total) directly inside this Budgets folder in which I need to remove one specific user from.  Obviously, when I attempt to remove the user from the child folder, I get the "you can't remove _______ because this object is inheriting permissions from its parent" message.  If I click Advanced on the permissions of the child folder, un-check the Include inheritable permissions from the object's parent and click Remove, it wants to remove everyone's permissions (which I am trying to avoid).  Is there a better way to remove this one person without wiping everyone out and re-adding the ones that should have stayed?  Also, there are child folders/files inside this child folder that I want to inherit the new permissions I have modified.
0
Comment
Question by:Keith Schroeder
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
7 Comments
 

Expert Comment

by:ManieyaK_
ID: 41870290
yes the best way to accomplish this is set up Security Groups
manage users / permissions using these groups instead of assigning individual user rights
0
 

Author Comment

by:Keith Schroeder
ID: 41870307
for this particular situation, its a little late for that.  not sure how this helps.
0
 
LVL 34

Expert Comment

by:it_saige
ID: 41870391
You fail to mention your second option when you remove inheritable permissions.  When you disable the inheritance, you can remove all of the permissions or add/copy/convert (depending on your OS) the current permissions that are inherited; e.g. -

Windows 8/8.1/10 & Server 2012 -Capture.JPGWindows Vista/7 & Server 2003/2008 -Capture.JPGWindows XP/2000 & Server 2000 -Capture.JPG
Choosing the add, copy or convert option will cause the OS to use the current inherited permissions as a template for new explicit permissions.  Once you have converted them to explicit permissions, you can remove the offending permissions.  You can also apply the explicit permissions to the child objects by selecting the appropriate option after you convert the inherited permissions into explicit permissions (this way removing the offending permissions will cause all child objects to update).

-saige-
0
IoT Devices - Fast, Cheap or Secure…Pick Two

The IoT market is growing at a rapid pace and manufacturers are under pressure to quickly provide new products. Can you be sure that your devices do what they're supposed to do, while still being secure?

 

Author Comment

by:Keith Schroeder
ID: 41870408
Its a Server 2008 machine.  I did mention the remove option in my original post.  If I click Remove though, it takes out every user who was granted access via the inheritable permissions option in the parent folder.  I then will have to re-add everyone who should have access.  Was trying to avoid that unless it is my only option.
0
 
LVL 34

Expert Comment

by:it_saige
ID: 41870419
You want to use the 'Add' option.  This will take the current permissions that are inherited and turn them into explicit permissions (any existing explicit permissions are ignored).

-saige-
0
 

Author Comment

by:Keith Schroeder
ID: 41870426
Are you saying I should add everyone again through that Add option and then those will override the inheritable permissions?  That sounds simple enough.  Do  I need to remove the inherited permissioned users once that is done?  I just opened the permission entry for one of the users to add them.  there are a lot of options.  What all do I choose to give them modify/write permissions but not full control/ownership?
0
 
LVL 34

Accepted Solution

by:
it_saige earned 500 total points
ID: 41870437
When you chose the add option all of the permissions that you currently see will remain (they will just be explicitly set as opposed to inherited).  Once you do this, then you can select the option to apply the explicit permissions to any child objects.  Once applied, you will then remove the permissions associated with the user you are inquiring about.  This will remove the permissions from the current folder and all child objects.

-saige-
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Article by: Justin
In light of the WannaCry ransomware attack that affected millions of Windows machines, you might wonder if your Mac needs protecting. Yes, it does and here is how to do it.
Ever wonder what it's like to get hit by ransomware? "Tom" gives you all the dirty details first-hand – and conveys the hard lessons his company learned in the aftermath.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Suggested Courses
Course of the Month6 days, 1 hour left to enroll

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question