Category Archive: 3. List Rights

How to set List Permissions

1. The use of list groups and permission groups to set list permissions

In other articles we already referred to the aspect that for the allocation of list permissions, list groups and permission groups can be used. For this purpose, there are questions such as:

  • “Can I use only list groups to set list permissions?”
  • “Can I use only permission groups to set list permissions?”
  • “Can I use permission groups on higher directories and list groups below?”
  • “Up to which level can the list groups be used and from which level the permission groups?”

2. Example

Read the rest of this entry »

Build perfect NTFS list rights

1. Necessity for list authorizations

Generally access rights to NTFS-file servers are assigned deeper than the 1st directory level. As soon as this is the case, one must take care of the fact that the user can should also bo able to browse the file system for appropriate directory. Here there are various possibilities with various effects.

2. Variants of assigning list rights

For browsing through the directory system, migRaven can flexibly form list authorizations. In addition to this, two options are fundamentally offered:

  1. For the list authorizations, own authorization groups are formed, which for example include the “Change” authorization groups from the lower levels.
  2. 2. In the directories above the explicitly authorized folder, for example the “Change” authorization groups are used for assigning the list authorizations.

The optimal way is the combination from both options. It should however be used in 1st and not up to the lowest level because otherwise the account appears in several groups. But it should not also be dispensed to position one because otherwise too many entries are included in the ACLs of the above directories. An ACL can maximum includes 1800 ACEs. Too many ACL entries make the access to directories slow.

Read the rest of this entry »