The traverse folder/execute file permission? 1

[1666]

What does the the traverse folder/execute file permission do? I have a folder with sub folders and want to give a user access to one of these folders,but don't want him to access the folders higher up.

Kind Regards

A

 

[hewissa]

The Traverse Folder permission allows or denies the user from moving through folders to reach other files or folders, even if the user has no permissions for the traversed folders (applies only to folders). Traverse Folder takes effect only when the group or user is not granted the Bypass Traverse Checking user right which checks user rights in the Group Policy snap-in. By default, the Everyone group is given the Bypass Traverse Checking user right.

For files : The Execute File permission allows or denies program files the are running (applies only to files).

Setting the Traverse Folder permission on a folder does not automatically set the Execute File permission on all files in that folder.

Hewissa

MCSE, CCNA, CIW

 

[1666]

Thanks, what would you suggest as being the way to set permissions on a sub folder for a user? For example, if you had to give a user read only permissions to a sub folder (folder > sub folder > sub sub folder) and only let him list the folder contents how would you do this?

Kind Regards

Andy

 

[hewissa]

I would set sharing only on the sub-sub-folder to Read. I would set the NTFS level permission to List Folder Contents. I wouldn't share the root folder or the sub folder, only set the share at the sub-sub-folder.

Hewissa

MCSE, CCNA, CIW

 

[Tom70]

It also means you can grant acces to the file without allowing them to travel through the folders to reach it. They will have to type the address of the file to execute it and while they can execute the file, they can't see the folder contents that leads to the file.