Re: Sharing Tab vs. Security Tab
- From: "PM" <PM@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 21 Apr 2005 06:09:03 -0700
I noticed the 'SYSTEM' account in one of the accounts inherited from the root
of D. If I block inheritance, should I give the SYSTEM account access to the
USERS folder?
What exactly does this SYSTEM account do?
"Arek Iskra [MVP]" wrote:
> "PM" <PM@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> news:276DCBD8-C163-4469-AECA-5E10809856C1@xxxxxxxxxxxxxxxx
> >I understand the general differences between the two tabs for Windows 2000
> > Server, but would like some advice.
> >
> > I'll use a USERS share for an example. If I have d:\users, with
> > subfolders
> > under 'users' for indivudual users, should the USERS folder be shared to
> > everyone - full control? What should the security tab have in it? I
> > understand that each sub folder should NOT be shared, and the security tab
> > should have the individual account listed.
> >
> > My big question is: The security tab inherits permissions from the root D:
> > drive. Should I block this inheritance?
> >
> > Thanks
>
> Ok, the basic difference between share permissions and local (NTFS)
> permissions is that the first one applies to users accessing a resource from
> the network, while the latter one applies when the user has a direct access
> to computer (e.g. when you yourself sit in front of it).
>
> Regarding blocking/unblocking inheritance - it all depends what you are
> trying to achieve. If you want to limit access only to certain users, then
> go ahead and block it.
>
> One more thing to remember about combining share and local permissions: a
> combination of them applies where the most restrictive takes precedence. For
> example, if you give Full Control permission on the local level and Read
> permission on the share, the result for someone accessing it over the
> network will be Read access. Of course, if the person sits in front of the
> computer he will get Full Control.
>
> --
> Arek Iskra
> MVP for Windows Server - Software Distribution
>
>
>
.
- Follow-Ups:
- Re: Sharing Tab vs. Security Tab
- From: Daniel
- Re: Sharing Tab vs. Security Tab
- References:
- Sharing Tab vs. Security Tab
- From: PM
- Re: Sharing Tab vs. Security Tab
- From: Arek Iskra [MVP]
- Sharing Tab vs. Security Tab
- Prev by Date: Event 1004 Search in Explorer Windows 2003 Terminal Server
- Next by Date: IIS Problem after SP1 installed in windows 2003
- Previous by thread: Re: Sharing Tab vs. Security Tab
- Next by thread: Re: Sharing Tab vs. Security Tab
- Index(es):
Relevant Pages
|
