A few ways to approach this (and I’m sure there are more): 1. You can either have the users access the shared folders directly, i.e. without stepping through the parent folder, assuming that the Share permissions (vs NTFS permissions) are also set to allow at least Read access to this one read only person.
2. You can use scoping at the parent folder level to only allow the special user to have Read access at “This folder only”. With this, the special user would only be able to step inside the parent folder, but not access anything else other than the subfolder that you assigned access to. You can access this in the Advanced Security area. You can also consider combining this with Access Based Enumeration so that the other folders don’t even appear for this special user and all they see are the folders they have access to. 3. You can create a new share at the sub folder level and grant the special user access to this new share. I personally don’t like this approach, but I’ve seen it done, and it would work. -Aakash Shah From: [email protected] [mailto:[email protected]] On Behalf Of Jason Bates Sent: Thursday, July 10, 2014 6:12 PM To: [email protected] Subject: [NTSysADM] Permissions Issue I know this is pretty basic but I can't figure it out. We have a shared folder and in it are many folders. I need to give someone read only rights to only two of the folders inside the shared folder. When I give them rights only to the shared folders, they can't see them because they don't have rights to the parent but when I give them rights to the parent, they see everything in it. Can someone help me with this?
