Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

NTFS file/folder security on network drive 1

Status
Not open for further replies.
treitus

treitus

Technical User
Joined
Sep 17, 2002
Messages
6
Location
CA
I'm having some difficulty with Win 2000 security. I'm trying to allow users to add and modify files/folders, but without any delete permissions. I give them read & execute permission with write permissions, but when they attempt to modify a file, they receive an 'access denied' popup and a .tmp file is created in its place. As it's a network drive, i am very very hesitant to give them delete permission, due to no recycle bin... any ideas?
 
Sort by date Sort by votes
treitus,

Without the delete permission, users will not be able to delete the temp files that are created when they save the file they are working on.

If you add the CREATOR OWNER group and give them MODIFY permission (includes delete), the user will be able to create and delete folders/files and the temp files that ONLY they create.

For example, set the USERS group set to CHANGE (Read, Write, Execute) and CREATOR OWNER set to MODIFY (Read, Write, Execute, Delete). User JSMITH creates a file called TEST.TXT and becomes the owner and inherently has the delete right on that file. User EJONES creates a file called HOME.TXT and has delete rights on that file. However, they cannot delete the other person's file. Only the person that created it (and anyone else who has the delete right) can delete it. This will also take care of your temp files.

Good Luck!



Tim
Certified AND Qualified
[thumbsup2]
 
Upvote 0 Downvote
Thanks tim. that was the info i needed. i guess the next question i have... is there a way to schedule administrator to become creator owner automatically, or is that a manual task..?
 
Upvote 0 Downvote
Is the Admin group/account in the ACL (Access Control List)?Do you want to go back and add the Admin group/account to the ACL? I'm sure you could accomplish it automatically via scripting and third-party or resource kit tools. If you don't mind my asking, what exactly are you trying to do?

If you already have the permissions set and the Admins have Full Control, no one can change that except other Admins.

On your other comment about deleting files over the network and not having a recycle bin -- you may want to invest in some type of recovery software like OnTrack's EasyRecovery. There may be other packages out there somewhere that will monitor files deleted via network access and keep them in a 'network recycle bin'. EasyRecovery is a great product though. It's saved me a few times!

Good Luck!

Tim
Certified AND Qualified
[thumbsup2]
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

microsGuy16
  • Locked
  • Question Question
Can not copy files to Mapped drive
Replies
0
Views
971
microsGuy16
microsGuy16
DTGMI
  • Locked
  • Question Question
WIN 10 Pro PC & Adding back to our Network
Replies
0
Views
775
DTGMI
DTGMI
sburgess73
  • Locked
  • Question Question
MSIPCCache Folder
Replies
0
Views
372
sburgess73
sburgess73
tscstl
  • Locked
  • Question Question
access to local folder
Replies
1
Views
542
hairlessupportmonkey
hairlessupportmonkey
mangentle
  • Locked
  • Question Question
What could be the potential causes if a Microsoft Windows Server is experiencing slow network!
Replies
1
Views
1K
gbaughma
gbaughma

Part and Inventory Search

Sponsor

Back
Top