Re: Where is the switch that makes denials work only for the group ...
Guest
Posts: n/a
Posts: n/a
can you give us more details what you are trying to do. Are we talking about
folder permissions. What group are we talking about...
Why would you need deny (you should stay away from this option if
possible).
Permissions on Windows work like this. Deny always overrule anything else.
Even if you have full access granted to the resource in one group but you
are denied access to that resource by another one then you won't be able to
get access to this resource.
So let say you created new user adm-mike. By default any user will be member
of group Users and so is adm-mike. Now you add this user adm-mike to
Administrator group. In next step you deny access to e.g. d:\temp to group
Users. So now adm-mike (and any other user that is member of group Users)
doesn't have access to d:\temp.
Things get even more interesting when you add some group into Users group...
:-)
--
Mike
MCSA 2K, MCSE 2K, MCT, ...
"Tom Dawson" <TomDawson@MindSpring.Com> wrote in message
news:011501c35604$4d072e40$a501280a@phx.gbl...
> Where is the switch that makes denials work only for
> the group they are specified for.
>
> Currently when I place a deny on a permission that
> applies only to one group (users) it applies to every
> group even owners and administrators.
>
> Thanks in advance,
>
> Tom
Linear Mode
