ntfs access

Question

Hi,

I came across a very strange issues with ntfs access rights on a folder, Everyone group has full Share access to a folder and the same everyone group have only read NTFS access right but users still can create their own files and sub folders in that folder over the network!!
These users are not in any AD group that have access to the root folder.

From where users get the create ntfs access rights!??

Thanks

Answer 1

Hello Shahin,

Thank you for your question and for reaching out with your question today.

This behavior could be attributed to a combination of factors:

1. If inheritance is enabled, permissions from higher levels might propagate down to this folder, granting users additional access.
2. Share Permissions and NTFS Permissions work together. Even if the NTFS Permissions are set to "Read," the Share Permissions might allow users to create files and folders.
3. Double-check the group memberships of the users who are able to create files and folders. Even if they aren't in AD groups with access to the root folder, they might be in other groups granting the necessary permissions.

If the reply was helpful, please don’t forget to upvote or accept as answer.

Answer 2

Hi, Thank you for your reply,
I understand that the sub folders inherit permissons from higher levels, what I dont understsand from where users get the rights to write files? at this moment only some individul users and 2 groups have access to this sub folders and none of the users are member of these 2 groups!
how can we find out from where other users get the rights?