1
I need to setup ACL in a windows share folder where:
- There is one main folder
- Inside this folder there are many subfolders, every users should write/read inside these subfolders what they want
- Nobody but the administrator should delete or add new files and folders in the main folder
The question is: is there an ACL setup for this requirements for the mainfolder to avoid to set particular ACL for every new added subfolder?
Tobia
Posted 2017-01-14T16:04:39.503
Reputation: 2 022
I've completed this before by setting an explicit DENY with DELETE on the top level folder and ensuring it only applied to "This folder only" but look at this from an elevated command line and test first.... *`FOR /F "tokens=" %G IN ('DIR /b /a:d "\server\share\topfolder*"') DO icacls "\server\share\topfolder%G" /deny "<everyusergroup>":(DE)
– Pimp Juice IT – 2017-01-14T17:21:30.487** and/or also **icacls "\server\share\topfolder" /deny "<everyusergroup>":(DE)`**... you may or may not find this helpful... see ICACLS... but you can do this through Folder properties as well manually.