Domain user still able to view view.list folder even though permission is set to Deny

file-permissionsuser-permissionswindows-server-2008-r2

I have AD on my server , I have specific user group are set to deny(List Folder) for certain folder, but the user still have visible of the folder in the server even they do not have permission to access it, what I want to archive is user without permission should not have visible of that folder. The deny(list folder) for that group of deny user is set , is that any mistake on my setting ?

Best Answer

I think 'Access-based Enumeration' is what you are looking for.

Check: http://technet.microsoft.com/en-us/library/cc784710(v=ws.10).aspx

Related Solutions

Managing folder access by subfolder permissions to simplify management on windows share

Maybe:

Hierarchy:

    Team A1 (group-a1, full permission)
        Files

Project A (group-a-all, read on directory only) Shared folder Team A2 (group-a2, full permission) Files

    Team B1 (group-b1, full permission)
        Files

Project B (group-b-all, read on directory only) Shared folder Team A2 (group-a2, full permission) Files [Fixer (group-a1)]

So Team A1 would share all files if they are in that team(group) and share the Project A folder, but only have read permissions

Otherwise if you have sub folders under Project A with 2 groups, it's a little bit more to manage.

NTFS Permissions – Access Denied even though Explicit Allow and no Deny

So it turns out that this problem was exactly the UAC based problem described in the other article; the "ITeveryone" group didn't work for me because it was a "Distribution" group, not a "Security" group. I tried the same thing with a security group to which I was also a member and it worked as expected.

Best Answer

Related Solutions

Managing folder access by subfolder permissions to simplify management on windows share

NTFS Permissions – Access Denied even though Explicit Allow and no Deny

Related Topic