Re: Security permissons

Hello luv2bike2,

Everyone groups includes as is states. Remove that group and use self created security groups which can reflect your company structure, so that you can easy manage the group members. Administrators and system you can give allways Full control and the other selfcreated groups give the permissions they need.

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


Just recently my office was switched to our parent companies domain, i
received new servers and a consultant company installed the OS and
other apps on the server, moved over our data from the old server to
the new server and i was told that i will need to set the permissions
on the new file server.

Below is a description of how the AD permissions are set on the new
server:

at the top of the d: drive, the security permissions are set as
follows:
Administrators (server-name\administrators) full control, modify etc.
Creator Owner Special permissions
Everyone Special permissions
System Full control, modify etc
Users (file-server\users) Read & Excute, List Folders Contents, Read
and
Special Permissions
There is a folder (I will call Common) on the D: drive and the secuity
permissions are set as follows;

Administrators (server-name\administrators) full control, modify etc.
Creator Owner Special permissions
System Full control, modify etc
Users (file-server\users) Read & Excute, List Folders Contents, Read
and
Special Permissions
(Everyone is not included here)
Under the Common folder there is another folder that I will call "All
Files"
and the security permissions are set as follows:
Administrators (server-name\administrators) full control, modify etc.
Creator Owner Special permissions
Everyone Modify, Read & Excute, list folder contents, Read, Write
System Full control, modify etc
Users (file-server\users) Read & Excute, List Folders Contents, Read
and
Special Permissions
The problem I have come across is:
users are able to "write" "modify" files in the "All files" directory
and
they should only have read & excute, list folders contents and Read at
the
top of the "all files" directory. Does the Everyone security
permissions
over rule the Users sercurity permissions and give the all but full
control?


.

Relevant Pages

  • Re: full control
    ... Full control means the ability to read, write, execute, modify, just what ... Modify is ability for others to modify your files. ... Special Permissions Full Control Modify Read & Execute List Folder ...
    (microsoft.public.win2000.networking)
  • Re: Need Write rights NOT Change or Delete
    ... I was able to disable inherting of permissions and then: ... Full Control and Modify ... So you should have write, read and exceute, list ...
    (microsoft.public.win2000.security)
  • Re: NTFS creator/owner property and permissions
    ... regardless of whether they have full control or modify ... permissions, that user can then modify the permissions of the file or ... In NTFS, the owner of a file or directory can always modify the permissions, ... > If you give the Modify but not Full Control NTFS ...
    (microsoft.public.win2000.security)
  • Re: Security permissons
    ... on the server, moved over our data from the old server to the new server and ... Below is a description of how the AD permissions are set on the new server: ... Administrators full control, modify etc. ... Users Read & Excute, List Folders Contents, Read and ...
    (microsoft.public.windows.server.active_directory)
  • Re: Windows XP Security permissions
    ... > Can someone explain to me what each of the permissions for administrators do? ... Full Control ... Modify ...
    (microsoft.public.windowsxp.security_admin)