Using User-Level Security

For each network resource or service governed by user-level security, there is a list of users and groups that can access that resource.

To share a directory or printer with user-level security

1. In Windows Explorer or My Computer, right-click a resource and, in the context menu, click Sharing.
2. In the resource's properties, click Add.
3. In the Add Users dialog box, click a user or group, and then assign access rights as described in the following section.

For each user, there is a set of rights assigned for a resource. The kinds of rights that you assign depend on the kind of resource you are securing:

• For shared directories, you can allow a user to have read-only access, full access, or custom access. Within custom access, you can grant the user any or all of the following rights: read, write, create, list, delete, change file attributes, and change access rights.
• For shared printers, a user either has the right to access the printer or not.
• For remote administration, a user either has the right to be an administrator or not as defined in the Passwords option in Control Panel.

Permissions are enforced for a resource as follows:

• If the user has explicit rights to the resource, then those rights are enforced.
• If the user does not have explicit rights to the resource, then the permissions are determined by taking all of the rights of each group to which the user belongs.
• If none of the groups to which the user belongs has any rights to that resource, then the user is not granted access to the resource.

When you do not explicitly assign access rights to a file or directory, Windows 95 uses implied rights. Implied rights are those assigned to a file or directory's nearest parent directory. If none of the parent directories (up to and including the root directory of the drive) have explicit rights, no access is allowed.

Note

Implied rights are displayed automatically in the properties dialog boxes of the shared file or directory.