At your top-level folder, add the group with read, and then go into the advanced options and set that to "This folder only". Then, apply additional NTFS permissions at each subfolder specifically for the groups that need access.
In addition, to make it so people only see the folders they have access to, you will want to load Windows Access Based Enumeration (ABE). Does not require a reboot to install, and make sure to set it for use on all shares on the server after loading. http://www.microsoft.com/downloads/details.aspx?FamilyID=04a563d9-78d9-4342-a485-b030ac442084&DisplayLang=en -Bonnie From: Wilma Flintstone [mailto:[EMAIL PROTECTED] Sent: Tuesday, July 22, 2008 3:00 AM To: NT System Admin Issues Subject: FW: 2003 Server Extremely slow when granting security rights to shares 2) The users can now map to Share1, but they get access is denied at the 1st level. \\servername\share1<file:///\\servername\share1> I need some users to actually be able to see multiple shares under Share1, but not everything, just what they have rights to. What are the correct rights settings for getting things setup this way. I'm trying a group with Read/List/Read Attributes but that doesn't seem quite right ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
