This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 9%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPK%3C/text%3E%3C/svg%3E)
Hi,
I have a .BAT file that uses the xcopy command to copy some files and folders from one folder to another on a network.
Ideally, I'd like the user on the destination PC (which is running Windows 10 Pro) to have read-only access to the destination folder. If I change the permissions of this user to make her access to this folder read-only, then I am pretty certain the .BAT file will not be able to copy files into this folder.
This makes me wonder if there is a way that I can set the .BAT to run at a higher security level than that of the logged in user?
If anyone can tell me if this is possible, I would greatly appreciate it.
Thanks in advance,
Paul
Hello @Paul Kraemer
No matter what the .bat file runs in it will still require permissions to the folder to copy files. You will need to give the user write access to the folder or they will not be able to copy files.
A work around solution is that you could have her write to a proxy folder (with write access) and schedule a xcopy command to be ran on the server that moves the files from the proxy folder to the folder that she has read-only access to.
--------------------------------------------
If this is helpful please mark as correct answer.
Hey @Paul Kraemer
Why not set up this proxy folder called "sync folder for theirName" > Map this folder as a drive letter on their computer and have her move files as required into this folder?
Then like I said, run a scheduled task on the server to copy files from this proxy folder into the main folder (where she doesn't have permissions other than read). This is of course just an idea and it is up to your whether you decide to implement it.
----------
Please don't forget to mark as correct answer if this has helped you. Good luck!
Thanks Dillon,
The task I have been given is to reduce the possibility that the workstation user could make a mistake that would result in the contents of her local folder not matching the contents of the folder on the server. If I am going to schedule a task on the server, I think I prefer to just copy the contents of the server folder to the local folder on the workstation directly. This way, the workstation user will not have to do anything for this to work.
I appreciate your help with this.
Thanks again!
Paul
Thanks DillonJS,
My goal is to keep a local folder on a user workstation in synch with a folder on the server.
We have a group of users with higher level permissions that is able to read and write files to the folder on the server. I'd like the user of the workstation to have no ability to change or delete the local files on the workstation.
Considering it doesn't seem possible to have the workstation user (with limited permissions) launch a .BAT file with elevated permissions to "pull" the files from the server, this makes me think I might want to require someone from the higher level group to initiate the .BAT file to "push" the files onto the workstation.
Procedurally, I don't think anyone in my organization will have a problem with this.
This does make me think of one other question. Does windows support any means by which you can setup a folder to be a read-only mirror image of another folder without relying on a .BAT file and xcopy?
Thanks again for your help.
Paul