I'm facing a frustrating issue with NTFS permissions. I want to set it up so that users can't rename a specific folder. I've disabled inheritance and set the user group to read-only for that folder, its subfolders, and files. However, users are still able to rename the folder. When I adjust the permissions to only cover the subfolders and files, users lose access to open the folder entirely. How is it possible that when I apply read permissions specifically to that folder, users still gain the ability to rename it?
3 Answers
Thanks for the insights, everyone! I'll be sure to check the parent folder's permissions and try out some of these suggestions.
You might want to check the permissions on the parent folder too. If users have `Full Control` on that folder, they might have special permissions that aren't visible through NTFS. Try changing the parent permissions to `Modify` instead of `Full Control` and see if that resolves the issue. Generally, only a few accounts like SYSTEM, ADMINISTRATORS, or CREATOR OWNER should have `Full Control`.
It sounds like the problem might be stemming from the permissions of the parent directory. If users have `Modify` access on the parent folder, that gives them the right to `Delete Subfolders and Files`, which allows them to rename the folder since renaming is basically a delete and create action. A quick fix would be to explicitly deny the `Delete` permission on that specific folder, but make sure that the denial is only applied to 'This Folder Only', so you don't affect the contents inside.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures