5) when the Inherit From Parent The Permission Entries That Apply To Child Objects
check box is selected. To prevent a subfolder or file from inheriting permissions from
a parent folder, clear the check box. You are then prompted to select one of the
options described in Table 8-6.
Table 8-6 Preventing Permissions Inheritance Options
Option Description
Copy Copy the permission entries that were previously applied from the parent to the
child and then deny subsequent permissions inheritance from the parent folder.
Remove Remove the permission entries that were previously applied from the parent to
the child and retain only the permissions that you explicitly assign here. Clicking
this button removes all permissions from the file or folder; if you do not grant
yourself permissions immediately afterward, you could lose access to the file. To
recover access to the file, you would need to take ownership.
Cancel Cancel the dialog box.
Guidelines for Planning NTFS Permissions
If you take the time to plan your NTFS permissions and follow a few guidelines, you
will find that permissions are more straightforward to manage than you might imagine.
Use the following guidelines when you assign NTFS permissions:
■ To simplify administration, organize files into folders so that you can assign per-
missions to folders instead of directly to files.
■ Allow users only the level of access that they require. If a user only needs to read
a file, assign the Read permission to his or her user account for the file. This
reduces the possibility of users accidentally modifying or deleting important doc-
uments and application files.
■ Create groups according to the access that the group members require for
resources, and then assign the appropriate permissions to the group. Assign per-
missions to individual user accounts only when necessary.
■ When you assign permissions to application folders, assign the Read & Execute
permission to the Users group and the Administrators group. This prevents appli-
cation files from being accidentally deleted or damaged by users or viruses.
■ When you assign permissions for public data folders, assign the Read & Execute
permission and the Write permission to the Users group and the Full Control per-
mission to the CREATOR OWNER. By default, the user who creates a file is also
Bạn đang xem 5) - MICROSOFT WINDOWS XP PROFESSIONAL EXAM 70 270 PHẦN 4 PPT