Professional Documents
Culture Documents
Network administrator can create shared files /folders on a network so that users with appropriate access
rights can access files and folders.
To enable users to access files and folders the Network administrator must perform the following tasks:
If you select full control permission, all permissions will be checked by default.
If you unchecked any lower level permission (such as read, or others) the full control allow check box
will be automatically unchecked
This dialog box allow you to set NTFS permissions to the users/groups
Users effective permission is the right the user actually has to access file or folder
To determine user’s effective permission combine all permissions that have been allowed to the
user through user name or group association and subtract/remove/ all permissions that have been
denied to the user
o Example: Suppose “Merry” was a member of accounting and IT groups. She was
assigned the following access permissions through groups
Merry’s permissions in the Accounting group
Full control
Modify √
Read √
Write √
Full control
Modify √
Read √
Write √
Or effective permissions will be all permissions allowed that are not found in permissions denied
Therefore, Merry’s effective permissions are:
o Read and execute
o List folder contents and
o Read
Permission inheritance
Suppose you may have sub folders in the main folders that you apply permission to
By default parent folders permissions are applied to any files and sub folders in the folder-This is
called inherited permission
To configure permission inheritance
The following dialog box indicates permission inheritance allowed to the users in the entries box
You should assign permissions at higher level folders with in directory structure and use inheritable
permissions to propagate permissions to all child objects with in structure
1. copy files
2. Move files
When you move or copy NTFS files, the permissions that have been set for those files might be changed
1. If you move a file from one folder to another folder on the same NTFS volume, the file will retain
the original NTFS permissions(NTFS permissions of the source folder)
2. If you move file from one folder to another folder b/n different NTFS volumes, the file is treated
as a copy and will have the same permissions as the destination folder
3. If you copy a file from one folder to another folder on the same NTFS volume or on
different volume the file will have the same permission as the destination folder
4. If you copy/move a folder or file to a FAT partition, it will not retains any NTFS permission
To share a folder, you must be logged on as a member of administrator or server operators group
The following dialog box indicate how a folder called merry was shared
To control users’ access to shared folders, you have to assign share permissions.
Share permissions are less complex than NTFS permissions and they can applied only to
folders where as NTFS permissions are applied to both folders and files
To assign share permissions:
Click permission button in the sharing tab of the folder properties dialog box
o You can assign 3-types of share permissions:
1. Full control share permission to allow full access to the shared folder
2. change share permission to allow users to change data in a file( to modify)
3. Read share permission to allow users to view and execute files in the shared
folders
When you select shares in the shared folder utility, you will see all shares that have been
configured on the computer
A share that is followed by a dollar sigh($) indicated that the share is hidden from view when
user access through my network places
o Example: C$ for C:\ and D$ for D:\
A shared folder looks like the following