 |
| Home | Tribon Utilities | Downloads | Tribon Articles | CAD/CAM Catalog | Tribon Forum | Old forum |
| New Articles: # Check PDMS Guides and PDMS / Tribon comparison |
|
| Tribon M1 / M2 Project Security Setup | ||
|
/Sys admin guide/
|
||
|
4.2.2 File Permissions At last we are in position where we can start setting up the access permissions of the project data. We could do this task even earlier, but for the sake of the documentation structure I have selected this point, where to involve the files' permissions and the users' privileges. From this point further we will have to create Windows domain users groups and users, and to set up file and directory access permissions. |
||
 In Windows 2000 Server if you create a new directory right in the core directory of the disk (for example D:\NewFolder ), the operating system gives full file access permissions to everyone by default. Where "Everyone" is a special users' group build in Windows. These permissions are inherited from the parent directory - " D:\ " in our case. Obviously we do not want everyone to access our data and to have full control on it; otherwise we would not spend time on writing / reading this document. Hence, we have to create our own groups and users and manipulate their privileges as needed. |
||
|
Let we consider the following users' groups created in the domain:
Please note that the groups' names are not obligatory and you could prefer to create them using different names. Also you may have one and the same user to belong to more than one user's group. At this point we need some users as well. Let we consider:
Now we can set up the files and directories permissions for the project. We will do this on a few steps. The first step is to set up the permissions on the highest project group level - directory D:\DemoProject
Open one Windows File explorer and right click on the directory D:\DemoProject - select "Properties" from the mouse context menu and in the "DemoProject Properties" window press "Security" tab. Most probably, you will see the following picture: |
||
 The first think to do here is to unselect the check box at the bottom of the window. This way we remove the link for permission inheritance from the parent object. When you do that a security warning dialog box will be shown and the system will ask you what to do with the existing permission setup. Select "Copy" as we will use the same option on the next stages as well and then click on "Everyone" and press "Remove" button. This way nobody have access to the selected directory and we can start making a list of our users and groups to who we want to grand access privileges. |
||
 |
||
| Now click "Add" and the following dialog will be shown. | ||
 |
||
|
From the list in the top window select the corresponding user or group and press "Add" in order to collect all required members. The following objects must be selected:
When ready press OK to continue. All selected objects will be listed in the security tab and to every one of them the following permissions will be granted:
Now we have to modify some of the permissions as follow:
When ready, press "Advanced". A new dialog will be presented. The only think to do here is to select "Reset permissions on all child objects" check box and click "Apply". A message box with request to confirm this operation will be shown. Click "Yes" to confirm. |
||
 |
||
 |
||
|
Doing this, all files and sub folders located under D:\DemoProject will take the same settings for file access permissions. This is our base for further security development. Example of how Administrator's and tbuser's settings should looks like. |
||
|
||
