|
-
January 16th, 2008, 11:54 PM
#1
NTFS Security Question
I'm writing up a FAQ series of documents for the other region IT departments for our company, and one of the subjects I'm writing on is how to setup AD groups. I'm also including a troubleshooting area for common problems.
Thinking about this brought up a question I'm not sure on -- I know that typically, if you have a Deny permission set for an individual user, it will override any Allow permissions given elsewhere for the same directory. However, what about in a scenario where, say, a user is a member of two AD groups -- we'll call them Group1 and Group2 -- where Group1 has Allow permission set to a directory while Group2 has Deny permission set. Is the user, being a member of both groups, therefore denied access?
Basically, whereas Deny permissions override Allow permissions for ONE user, what about a user in MUlTIPLE groups, where one group has Allow and the other Deny?
My guess is Deny still overrides, but just wanted to confirm...
Last edited by AngelicKnight; January 16th, 2008 at 11:56 PM.
Similar Threads
-
By cheyenne1212 in forum Miscellaneous Security Discussions
Replies: 7
Last Post: February 1st, 2012, 02:51 PM
-
By pwaring in forum Other Tutorials Forum
Replies: 60
Last Post: October 22nd, 2004, 09:15 PM
-
By Ennis in forum AntiOnline's General Chit Chat
Replies: 5
Last Post: December 27th, 2003, 05:28 PM
-
By xmaddness in forum Miscellaneous Security Discussions
Replies: 1
Last Post: October 9th, 2002, 09:21 PM
-
By xmaddness in forum Miscellaneous Security Discussions
Replies: 1
Last Post: October 2nd, 2002, 09:32 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote