New
#1
Windows Security. Allow user access only to subfolder and not root
I've tried to search about this there and here, but hadn't found a solution.
SITUATION
I have a following folders structure:
root
----|A
----|B
--------|B1
--------|B2
----|C
I need to give permission for user to access only folder B2 and deny access to any root folders. I want to lock user inside this folder.
WORKAROUND
After reading this, I almost achieved it doing these two steps:
- I gave the only "Traverse Folder/Execute File" permission for desired user to root folder and forced this permission to all subfolders.
- I disabled inheritance for folder B2 and gave "Full control" permission for desired user.
In this way user can't access root folder's content, but can access B2 folder directly through direct link or shortcut.
PROBLEM
The problem is that user can get one directory "up" from his folder and see root folder B with subfolder B1 along with B2. He can even go inside B1 directory and see all files inside. Although he can't access main root folder root - Windows shows "Access denied" error. Windows Security was always very messy but now I'm out of ideas.