permissions

Hi,

If you need set up users who access the server through a share, how would you set up permissions so they could not delete items? What Share and NTFS permissions would they need?

Find more posts tagged with

SAVE $250 on Your Microsoft Boot Camp — Use Code "EXAM26"

Exclusively for TechExams members for Infosec Boot Camps starting before April 30, 2026

View Microsoft Boot Camps

Comments

shednik

well what access do they need exactly?

iankf

shednik wrote:

well what access do they need exactly?

The need to be able to read write everything just not delete. Only one person is allow to delete. Set permissions as so

Share
Change
Read

NTFS
All apart from delete is not seleted for domain users

iankf

ah figured it out created owners groups

sprkymrk

iankf wrote:

ah figured it out created owners groups

You mean you added the Creator/Owner built-in group, which then changes to the username of the user who created the file/folder? That will still allow them to dlete their own stuff, just not anyone else's. If that works for you then that's a good solution. I thought you didn't want anyone to delete anything.

iankf

group was already there lol, one person has delete stuff anyway sorted it

snoop003

hi,

you can give Deny permission for that user using NTFS folder permission.

Folder properties > Security > Advanced > select user and click edit .

hope this will be helpfull.