on a network share how can I stop people dragging directories and
still have enought rights for word.

---

Request for Question Clarification by joseleon-ga on 17 Sep 2002 05:50 PDT

Hello, jasonhugebelly:
  Do you want to prevent users to create directories and files on a
network share, but allow Microsoft Word to write on it?

Regards.

---

Request for Question Clarification by twitch-ga on 17 Sep 2002 09:57 PDT

Jason-

By "dragging directories" to you mean moving directories into/out of a
parent directory into which people will save files? Or are you
referring to the directory that contains Microsoft Word itself?
Additionally, are the users executing word from an network server, or
does it reside on their workstations?

Or, is it simply that you don't want people mucking around on the
network share, moving and creating directories and whatnot, but you
still need them to be allowed to save documents there?

->jacob

---

Clarification of Question by jasonhugebelly-ga on 18 Sep 2002 01:44 PDT

Hi
I have a user who manages to drag directories out of the normal
structure and also delete directories. The users must be able to
create new doc in word excel etc but I do not want them to be able to
move directories ( they seem to not know where they go and the time to
find or restore is getting a pain).
When i looked at the rights it seem's almost impossible to get the
correct level and still have word working. I could get the admin
person to create directories or manager group but not files. Likewise
full editting and copying has to be allowed.
Regards
Jason

---

Clarification of Question by jasonhugebelly-ga on 18 Sep 2002 03:34 PDT

Hi Jacob
The users all run w2k workstn and they run apps (office 2000)locally
and the data is on a shared network drive(s). My main requirement is
to stop them mucking around. I would prefer to let them create
directories and not be able top delete or move them but if i have to
then as I have mention use manages to create the structure.
Thanks
Jason

---

Request for Question Clarification by twitch-ga on 08 Oct 2002 09:05 PDT

I think that I may have found a solution for you, but I'm not posting
it as an official answer, as I want to let you try it out and make
certain that it fits your needs. The problem with the solution I'm
offering is that if a user drags a folder somewhere, a copy of the
folder will be created in the new location and the files from the
original folder will be _moved_ to the new folder. The original folder
and any subfolders will not be deleted, but the files will be moved.
If users need to be able to delete files then this is unavoidable.

If you can restrict users from deleting files, then what you want is
possible. To accomplish this just change the drop-down list in step 6
below to be 'This folder, subfolders and files'.

Note also that your job will be much easier if you create a Group to
hold all users that will be subjected to these permissions. In the
example below I assume that this is true and that this group is named
'MyUsers'. If you don't have a group set up you will need to repeat
steps 4-9 for all users you wish to restrict.

1) Right-Click the topmost folder in the hierarchy (e.g. if all users
have individual user directories underneath a main folder named
'Users', right-click 'Users'

2) Click the 'Security' Tab

3) Click the 'Advanced' button

4) Click 'Add..'

5) Hilight 'MyGroup' in the new dialog box that pops up. Click 'OK'

6) In the newly-popped-up Permissions window change the 'Apply onto'
drop-down box to 'This folder and subfolders'

7) Click the 'Allow' checkbox for the following Permissions:

   'Traverse Folder/Execute File'
   'List Folder/Read Data'
   'Read Attributes'
   'Read Extended Attributes'
   'Create Files/Write Data'
   'Create Folders/Append Data'
   'Write Attributes'
   'Write Extended Attributes'
   'Read Permissions'

8) Click the 'Deny' checkbox for the following permissions:

   'Delete subfolders and files'
   'Delete'
   'Change Permissions'
   'Take Ownership'

9) Click 'Apply'

Your users will now be able to save/edit/delete files in their user
directories and can also create subdirectories. They will not,
however, be able to move directories out of the 'Users' folder or
delete any directories.

Let me know how this works out for you.


Search strategy
---------------
None, I used my own experience administering Windows 2000 to find a
solution.

jason- 

I posted this a few days ago as comment because I wanted you to let
you try
it out and make certain that it fits your needs. However, I'm not
certain whether or not you recieve an update when a comment is posted,
so I'm posting this as an official answer now, since I didn't get any
feedback from you. If this does not solve your problem, please let me
know as soon as possible.

The problem with the solution I'm offering is that if a user drags a
folder somewhere, a copy of the folder will be created in the new
location and the files from the original folder will be _moved_ to the
new folder. The original folder and any subfolders will not be
deleted, but the files will be moved.
If users need to be able to delete files then this is unavoidable.

If you can restrict users from deleting files, then what you want is
possible. To accomplish this just change the drop-down list in step 6
below to be 'This folder, subfolders and files'.

Note also that your job will be much easier if you create a Group to
hold all users that will be subjected to these permissions. In the
example below I assume that this is true and that this group is named
'MyUsers'. If you don't have a group set up you will need to repeat
steps 4-9 for all users you wish to restrict.

1) Right-Click the topmost folder in the hierarchy (e.g. if all users
have individual user directories underneath a main folder named
'Users', right-click 'Users'

2) Click the 'Security' Tab

3) Click the 'Advanced' button

4) Click 'Add..'

5) Hilight 'MyGroup' in the new dialog box that pops up. Click 'OK'

6) In the newly-popped-up Permissions window change the 'Apply onto'
drop-down box to 'This folder and subfolders'

7) Click the 'Allow' checkbox for the following Permissions:

   'Traverse Folder/Execute File'
   'List Folder/Read Data'
   'Read Attributes'
   'Read Extended Attributes'
   'Create Files/Write Data'
   'Create Folders/Append Data'
   'Write Attributes'
   'Write Extended Attributes'
   'Read Permissions'

8) Click the 'Deny' checkbox for the following permissions:

   'Delete subfolders and files'
   'Delete'
   'Change Permissions'
   'Take Ownership'

9) Click 'Apply'

Your users will now be able to save/edit/delete files in their user
directories and can also create subdirectories. They will not,
however, be able to move directories out of the 'Users' folder or
delete any directories.

Let me know how this works out for you.


Search strategy
---------------
None, I used my own experience administering Windows 2000 to find a
solution.

u mean to read only access? or just to modify access.. also u could
allow users access to only "word " as an application.