Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Register a free account to unlock additional features at BleepingComputer.com

Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Latest News: Thousands of Compromised WordPress Sites Redirect to Tech Support Scams

Featured Deal: Get 96% off a Xamarin Cross Platform Development Bundle Deal

Windows Server 2016: Prevent folder deletion under a namespace created by DFS

Started by RocknRollTim , Dec 29 2016 07:20 PM

Please log in to reply

4 replies to this topic

#1 RocknRollTim

Members
20 posts
OFFLINE

Local time:10:58 PM

Posted 29 December 2016 - 07:20 PM

Hi all,

Please could someone tell me where I am going wrong with my file permissions? Basically I want to prevent all folders from being deleted but to allow users to create and delete files within their own user folders. Below I have provided an output for all folder permissions using icacls. Shares were created under a namespace using DFS in Windows Server 2016 on one VMWare server and were replicated to another VMWare server which also has Windows Server 2016 as part of a lab environment.

Microsoft Windows [Version 10.0.14300]

C:\Users\Administrator.TIM>e:

E:\>icacls fileshare /t

fileshare CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\Customer Services:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(RX,W)

TIM\Management:(OI)(CI)(RX)

TIM\Marketing:(OI)(CI)(RX)

TIM\R&D:(OI)(CI)(RX)

TIM\Sales:(OI)(CI)(RX)

TIM\Test Users:(OI)(CI)(RX)

BUILTIN\Administrators:(OI)(CI)(F)

BUILTIN\Users:(OI)(CI)(M)

fileshare\Customer Services CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\Customer Services:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\DfsrPrivate NT AUTHORITY\SYSTEM:(F)

CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

BUILTIN\Users:(OI)(CI)(M)

BUILTIN\Users:(CI)(WD,AD)

fileshare\IT CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(RX,W)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Management CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(F)

TIM\Management:(OI)(CI)(RX)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Marketing CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(F)

TIM\Marketing:(OI)(CI)(RX)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\R&D CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(F)

TIM\R&D:(OI)(CI)(RX)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Sales CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(F)

TIM\Sales:(OI)(CI)(RX)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Test CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(F)

TIM\Test Users:(OI)(CI)(RX)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Customer Services\User1 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

TIM\User1:(OI)(CI)(RX)

fileshare\Customer Services\User10 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User1:(OI)(CI)(RX)

TIM\User10:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Customer Services\User11 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User1:(OI)(CI)(RX)

TIM\User11:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Customer Services\User12 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User1:(OI)(CI)(RX)

TIM\User12:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Customer Services\User2 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User1:(OI)(CI)(RX)

TIM\User2:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Customer Services\User3 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User1:(OI)(CI)(RX)

TIM\User3:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Customer Services\User4 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User1:(OI)(CI)(RX)

TIM\User4:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Customer Services\User5 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User1:(OI)(CI)(RX)

TIM\User5:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Customer Services\User6 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User1:(OI)(CI)(RX)

TIM\User6:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Customer Services\User7 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User1:(OI)(CI)(RX)

TIM\User7:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Customer Services\User8 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User1:(OI)(CI)(RX)

TIM\User8:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Customer Services\User9 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User1:(OI)(CI)(RX)

TIM\User9:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\DfsrPrivate\ConflictAndDeleted NT AUTHORITY\SYSTEM:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\DfsrPrivate\Deleted NT AUTHORITY\SYSTEM:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\DfsrPrivate\Installing NT AUTHORITY\SYSTEM:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\DfsrPrivate\Staging NT AUTHORITY\SYSTEM:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\DfsrPrivate\Staging\ContentSet{CFBB8746-53C8-47EB-A3CC-6607FD019A52}-{1D01B746-F04A-47CC-9D2E-3E94A2C31E95} NT AUTHORITY\SYSTEM:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\DfsrPrivate\Staging\ContentSet{CFBB8746-53C8-47EB-A3CC-6607FD019A52}-{1D01B746-F04A-47CC-9D2E-3E94A2C31E95}\55 NT AUTHORITY\SYSTEM:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\DfsrPrivate\Staging\ContentSet{CFBB8746-53C8-47EB-A3CC-6607FD019A52}-{1D01B746-F04A-47CC-9D2E-3E94A2C31E95}\55\255-{989827B3-272D-4D7F-83E7-0E9D12FBBF29}-v255-{989827B3-272D-4D7F-83E7-0E9D12FBBF29}-v255-Downloaded.frx NT AUTHORITY\SYSTEM:(I)(F)

BUILTIN\Administrators:(I)(F)

fileshare\IT\User48 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User48:(OI)(CI)(RX)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\IT\User49 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User48:(OI)(CI)(RX)

TIM\User49:(OI)(CI)(RX)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\IT\User50 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User48:(OI)(CI)(RX)

TIM\User50:(OI)(CI)(RX)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Management\User43 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

TIM\User43:(OI)(CI)(RX)

fileshare\Management\User44 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User43:(OI)(CI)(RX)

TIM\User44:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Management\User45 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User43:(OI)(CI)(RX)

TIM\User45:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Management\User46 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User43:(OI)(CI)(RX)

TIM\User46:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Management\User47 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User43:(OI)(CI)(RX)

TIM\User47:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Marketing\User23 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

TIM\User23:(OI)(CI)(RX)

fileshare\Marketing\User24 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User23:(OI)(CI)(RX)

TIM\User24:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Marketing\User25 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User23:(OI)(CI)(RX)

TIM\User25:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Marketing\User26 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User23:(OI)(CI)(RX)

TIM\User26:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Marketing\User27 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User23:(OI)(CI)(RX)

TIM\User27:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Marketing\User28 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User23:(OI)(CI)(RX)

TIM\User28:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Marketing\User29 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User23:(OI)(CI)(RX)

TIM\User29:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Marketing\User30 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User23:(OI)(CI)(RX)

TIM\User30:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Marketing\User31 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User23:(OI)(CI)(RX)

TIM\User31:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Marketing\User32 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User23:(OI)(CI)(RX)

TIM\User32:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\R&D\User33 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

TIM\User33:(OI)(CI)(RX)

fileshare\R&D\User34 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User33:(OI)(CI)(RX)

TIM\User34:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\R&D\User35 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User33:(OI)(CI)(RX)

TIM\User35:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\R&D\User36 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User33:(OI)(CI)(RX)

TIM\User36:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\R&D\User37 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User33:(OI)(CI)(RX)

TIM\User37:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\R&D\User38 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User33:(OI)(CI)(RX)

TIM\User38:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\R&D\User39 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User33:(OI)(CI)(RX)

TIM\User39:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\R&D\User40 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User33:(OI)(CI)(RX)

TIM\User40:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\R&D\User41 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User33:(OI)(CI)(RX)

TIM\User41:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\R&D\User42 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User33:(OI)(CI)(RX)

TIM\User42:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Sales\User13 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

TIM\User13:(OI)(CI)(RX)

fileshare\Sales\User14 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User13:(OI)(CI)(RX)

TIM\User14:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Sales\User15 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User13:(OI)(CI)(RX)

TIM\User15:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Sales\User16 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User13:(OI)(CI)(RX)

TIM\User16:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Sales\User17 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User13:(OI)(CI)(RX)

TIM\User17:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Sales\User18 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User13:(OI)(CI)(RX)

TIM\User18:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Sales\User19 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User13:(OI)(CI)(RX)

TIM\User19:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Sales\User20 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User13:(OI)(CI)(RX)

TIM\User20:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Sales\User21 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User13:(OI)(CI)(RX)

TIM\User21:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Sales\User22 CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\User13:(OI)(CI)(RX)

TIM\User22:(OI)(CI)(RX)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Test\Bob Smith TIM\bsmith:(OI)(CI)(RX)

CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

fileshare\Test\Larry Cooper CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

TIM\LCooper:(OI)(CI)(RX)

fileshare\Test\Sharri Kane CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

TIM\skane:(OI)(CI)(RX)

fileshare\Test\Tim Perry CREATOR OWNER:(OI)(CI)(IO)(F)

NT AUTHORITY\SYSTEM:(OI)(CI)(F)

TIM\IT Support Services:(OI)(CI)(F)

BUILTIN\Administrators:(OI)(CI)(F)

TIM\TPerry:(OI)(CI)(RX)

Successfully processed 70 files; Failed processing 0 files

If you need me to provide with anymore information, please feel free to post. Your help would be much appreciated.

Kind regards,

RocknRollTim

Back to top

BC AdBot (Login to Remove)

BleepingComputer.com
Register to remove ads

#2 RocknRollTim

Topic Starter

Members
20 posts
OFFLINE

Local time:10:58 PM

Posted 30 December 2016 - 12:26 PM

Update

Discovered that the problem is down to the permissions that are set on the NTFS volume where the DFS namespace and share are hosted as well as users in multiple groups where if a deny permission is specified in one group the users are also denied in those other groups plus deny permissions take precedence over allow permissions making this objective very difficult to achieve. The only other thing I can think of doing is specifying individual user permissions on each folder which is very time consuming as well as cumbersome, can anyone think of any better ways of achieving this task?

Kind regards,

RocknRollTim

Edited by RocknRollTim, 30 December 2016 - 01:07 PM.

Back to top

#3 RocknRollTim

Topic Starter

Members
20 posts
OFFLINE

Local time:10:58 PM

Posted 01 January 2017 - 08:48 AM

Update

I have achieved preventing upper level folders and files from being deleted apart from sub folders and files which apparently cannot be done due to the nature in which the delete permissions work preventing creation of folders and files as well as renaming of folders and files in NTFS.

Read and write permissions are needed to access and to save folders and files
List folder contents permission to view contents of folder as well as attributes
Read and execute permission to access folders and to execute program files including read, write and list folder contents permissions previously mentioned
Modify permission to have the ability to modify folders and files with the ability to delete
Full control including all of the above including take ownership

Regards,

RocknRollTim

Edited by RocknRollTim, 01 January 2017 - 12:09 PM.

Back to top

#4 sflatechguy

BC Advisor
2,233 posts
OFFLINE

Gender:Male
Local time:05:58 PM

Posted 02 January 2017 - 10:59 AM

You definitely don't want to configure individual permissions per folder. That is a nightmare to manage.

Try to determine which groups of users need certain permissions on which folders, then use security groups to grant them those permissions. You can also disable or amend permission inheritance at lower levels, if you want users to be able to make changes to individual folders, but not top-level folders. But again, this makes managing permissions much more complicated.