NTFS Permissions quandary - Windows 2000 server

NTFS Permissions quandary - Windows 2000 server: Posted by booker@mgt on April 18th, 2007; Whenever I try to do really really special permissions, I always get confused.

I have a list of files in a particular folder. However one of the files, I
don't even want a particular user to see when they open up the folder

I create a group, and I give that group the List Folder contents right on
the folder containing the files.

On that particular file, I set deny permissions for a "host" of things:
Traverse Folder / Execute File
List Folder / Read Data
Read attributes
Read Extended Attributes
Read Permissions

However when that user browses to the folder and opens up the folder, he
still sees that file in the full list of files.

What did I set wrong, if anyone has any ideas

And to provide full disclosure (Smile). I actually would like to set it up
so that each person who browses to the folder will only see the file that
pertains to them, but for now I was just testing with one file.

My guess is I will have to rearrange how the files are organized on the
server.

Thanks; Posted by SBS2K3 Admin on April 18th, 2007; Well apparently there is a need on your part to keep that particular file in
the same folder. I'm guessing so that others can access? Im sure you have a
group that grants the appropriate access to the folder. Here's what you can
do.
Put that file in a sub folder of the parent folder. Create a new user group
and include everyone from the parent folder group except the user you do not
want to see the file.

"booker@mgt" <bookermgt@discussions.microsoft.com> wrote in message
news:B37785CA-191D-4E84-80A9-10C64B35E968@microsoft.com...; Posted by Jeremy on April 19th, 2007; Basically NTFS allows any user to see all files and directories in a
directory that they have List Contents permissions on, regardless of the
permissions on the subordinate object. You can't achieve what you are trying
to do... UNLESS:

The client is accessing the file over the network, the file server is
running WS03SP1 minimum and you have enabled Access Based Enumeration of
Shared Files on the share they are using to access the file. This new
feature hides objects that they user has no access to.

Cheers,
Jeremy.

"booker@mgt" wrote:

Similar Posts

Migrating Shares and NTFS Permissions from Win2k Server to Win2k3 Server (Computers & Technology) by JustMe
Retain NTFS Permissions while copying to a new server... (Windows Server) by George Squillace
Cannot set permissions on some folders in windows 2000 server (Windows Server) by Ron
Can a Windows 2000 NTFS SAN LUN be moved to a Wind2003 server ? (Windows Server) by Matti
Win 2000 Pro Administrator Acct Quandary (Windows 2000) by maeoats