Scribd
Upload
20 views6 pages

NIS Practical 4

This document outlines the steps to assign file and folder permissions using Group Policy Management in a Windows environment. It details the process of creating a Group Policy Object (GPO), editing permissions, and configuring auditing and ownership settings. The conclusion emphasizes the efficiency of using GPO for managing permissions across multiple systems, saving time and effort.

Uploaded by

labonimsonawane05
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
20 views6 pages

NIS Practical 4

This document outlines the steps to assign file and folder permissions using Group Policy Management in a Windows environment. It details the process of creating a Group Policy Object (GPO), editing permissions, and configuring auditing and ownership settings. The conclusion emphasizes the efficiency of using GPO for managing permissions across multiple systems, saving time and effort.

Uploaded by

labonimsonawane05
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 6

Practical No.

4
Aim: Apply security to file folder or application using access permission
and verify.
Steps to Assign File/Folder Permissions

1. Go to “Start Menu” ➔ “Administrative Tools”, and click “Group


Policy Management” to access its console.

2. In left panel of “Group Policy Management Console”, you have to create


a new Group Policy Object or edit an existing Group Policy Object.

3. To create a new GPO, right click “Group Policy Objects”, and select “New” from the
context menu. It shows “New GPO” window.

Figure 1: Creating a new GPO

4. Enter a name for the Group Policy Object (GPO) (in this case it is Assigning
Folder
Permissions), leave “Source Starter GPO” as “(none)”.

5. Right-click on the newly created “User Folder Permissions” GPO, and select
“Edit GPO”. Group Policy Management Editor window appears on the screen

6. Navigate to “Computer Configuration” ➔ “Policies” ➔ “Windows Settings”


➔ “Security Settings” ➔ “File System”
Figure 2: Navigate to File System

7. Right-click on “File System” in the left pane and select “Add File…” It
shows the following dialog box

.
Figure 3: Select file or folder which you want to assign permissions on

8. Browse the folder or file that you wish to assign permissions on, and left click to
select it. Click “OK”.

9. “Database Security” window appears on the screen


Figure 4: Database security window

10. Click “Advanced” button to access “Advanced Security Settings” window. Stay on
the “Permissions” tab that appears by default.

Figure 5: Advanced security settings window

11. On this tab, either select an existing user and click “Edit…” or click “Add…”
to add a new user to the permissions.

12. “Permissions Entry for…” dialog box opens up. Here, you will see that
there is a list of permissions available for your users, and you can also
choose where you want to apply those permissions.
Figure 6: Permissions entry folders

13. Use the drop-down menu in the “Apply to” field to assign
selected permissions to desired folders.

14. Check the permissions as needed. These are self-explanatory.


15. Click “OK” to apply the permissions. It takes you back to “Advanced Security”
window.

16. Now, move to the “Auditing” tab. Under this tab, you can do audit settings for the
folder, so that any change done to this folder or its permission will be audited.
Configure the auditing settings as per requirement.

17. Similarly, you can do ownership settings for the folder under “Owner” tab.

18. Once you have done “Permission”, “Auditing” and “Ownership” settings,
click “OK” to close “Advanced Security…” window.

19. Click “OK” to close “Database Security…” window. Next, you will see “Add
Object”
window.
Figure 7: Add object window 20.
There are three options on the “Add Object” window:

a. Configure this file or folder then: Select this option to apply the settings. It
contains the following two options.
i. Propagate inheritable permissions to all subfolders and files: Selecting this
option means, all the subfolders and files will inherit permissions from the
parent folder. In case of a mismatch or conflict, explicit permissions that
were assigned to the subfolders or files will override the
inherited permissions.

ii. Replace existing permissions on all subfolders and files with inheritable
permissions: This option will overwrite all the settings on all subfolders and
files with the ones on the parent, so ultimately they will have identical
permissions to the parent folder.

b. Do not allow permissions on this file or folder to be replaced: Use this setting
for subfolders and files that you do not want to inherit permissions. For this,
make an additional entry for those subfolders and files that will not inherit
permissions e.g. let’s say you want the “A” folder to inherit permission but
don’t want “B” folder to inherit permissions, in that case create an entry for the
“B” folder.

21. Close “Group Policy Management Editor” window.


22. Right-click the domain you want to apply this GPO to, and then select “Link an
Existing GPO…” option from the context menu. “Select GPO” window opens up
Figure 8: Select the new GPO

23. Select the new “Assigning Folder Permissions” GPO, then click OK.
24. In the right pane, stay on the “Linked Group Policy Objects” tab that appears
by
default.

25. Right-click on the “Assigning Folder Permissions”, and select “Enforced” from the
context menu. A confirmation message appears on the screen.

26. Click “OK” to close the dialog box.

Conclusion: Assigning permissions for each file and folder individually can be
complex and time consuming. To avoid going through the annoyances of changing
permissions for a bunch of folders individually, we can use Group Policy to do it. In
this article, you will see the process of assigning file and folder permissions across a
domain through GPO. These instructions can be extremely helpful, and save your
time if you have to assign permissions to a large number of systems with a common
setup.

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy