Novell Netware 5.1 had the ability to set a delete inhibit and rename inhibit on a given folder. Regardless of your permissions if the folder was set to delete inhibit or rename inhibit you couldn’t either delete or rename the folder until you unchecked the boxes in the properties of a folder.
I now am trying to get a similar thing done on windows 2003.
Here is what I have
\\fileserver\Share\Client\Folder 1
Folder 2
Folder3
Etc…
In Client I have a set of folders for the client; I don’t want any added at the client level. Once a user gets into folder 1, 2, 3 they can add anything they want. I can stop users from deleting the Folder 1. If a user goes to delete Folder 1 it prompts for conformation, you say yes, it goes to delete it but it says access is denied, which is what I want. The problem is that it deletes everything in the folder. I don’t know how to stop that.
The permissions for the Share are set to Everyone Change & Read.
The client level I have unchecked the Allow Inheritable permissions box. I have set up a client group (call them CG). In the advanced properties I have CG with the following checked in the Advanced properties, Traverse Folder / Execute File: List Folder / Read Data: Read Attributes: Read Extended Attributes: Read Permissions; I have these set to apply onto: This Folder, Subfolders and files.
Within the Advanced Security Settings for Client I have set up an additional Deny entry. The two checkboxes I have are Deny Delete Subfolders and Files and Deny Delete; this is set to Apply onto this folder only.
In Folder 1’s Advanced Security I have checked deny both delete and delete subfolders and files for this folder only. I also have an additional entry for CG with all allow boxes check except for full control, Delete Subfolders and files, change permissions and take ownership; That is set for This folder, subfolders and files.
TIA
Let me know if you need more information.
Kevin
I now am trying to get a similar thing done on windows 2003.
Here is what I have
\\fileserver\Share\Client\Folder 1
Folder 2
Folder3
Etc…
In Client I have a set of folders for the client; I don’t want any added at the client level. Once a user gets into folder 1, 2, 3 they can add anything they want. I can stop users from deleting the Folder 1. If a user goes to delete Folder 1 it prompts for conformation, you say yes, it goes to delete it but it says access is denied, which is what I want. The problem is that it deletes everything in the folder. I don’t know how to stop that.
The permissions for the Share are set to Everyone Change & Read.
The client level I have unchecked the Allow Inheritable permissions box. I have set up a client group (call them CG). In the advanced properties I have CG with the following checked in the Advanced properties, Traverse Folder / Execute File: List Folder / Read Data: Read Attributes: Read Extended Attributes: Read Permissions; I have these set to apply onto: This Folder, Subfolders and files.
Within the Advanced Security Settings for Client I have set up an additional Deny entry. The two checkboxes I have are Deny Delete Subfolders and Files and Deny Delete; this is set to Apply onto this folder only.
In Folder 1’s Advanced Security I have checked deny both delete and delete subfolders and files for this folder only. I also have an additional entry for CG with all allow boxes check except for full control, Delete Subfolders and files, change permissions and take ownership; That is set for This folder, subfolders and files.
TIA
Let me know if you need more information.
Kevin
