Show NTFS is the default file system of the Windows operating system family, offering a wide range of advanced features such as journaling, compression, quotas, and much more. NTFS also offers a flexible security model, allowing administrators to control how users and groups can interact with folders and files. These interactions are controlled through the assignment of permissions. Basic and Advanced PermissionsNTFS permissions are logically grouped into a series of six basic permissions, each of which is comprised of a specific set of advanced (special) permissions. These groupings make it easier to apply complimentary permissions to users and groups.
Permissions can have different meanings depending on whether they're applied to folders or files. Let's start with the basic permissions.
Now we'll further refine our understanding of the available advanced (also known as "special") permissions.
Permission InheritanceBy default, NTFS permissions for files and folders inherit the permissions of their parent folder. The primary purpose of file system permissions inheritance is to simplify administration. Without inheritance, administrators would need to specify permissions explicitly for each and every file and folder. There are cases, however, when an administrator will need to assign explicit permissions to a file system branch. This can be accomplished by disabling permissions inheritance for a given set of child objects (files or folders) and then assigning the desired permissions. Network Share PermissionsWindows shares can be used to provide access to one or more folders via the network. Share permissions are distinct from NTFS permissions and take effect when the associated folder is accessed from a remote machine. Share permissions are also less granular than NTFS permissions, offering Read, Change, and Full Control access levels. Rules for Determining User AccessLet's review the rules that govern how these permissions systems work together to regulate access.
Related Links |