To grant users access to files and folders on the local computer or network, you assign these users permissions. Two kinds of permissions can be used to secure access to these resources: NTFS permissions and shared-folder permissions. You need to understand both kinds of permissions and how they work together.
NTFS is the primary WS2003 filesystem (FAT/FAT32 aren’t recommended for most purposes), and partitions formatted with NTFS can have their files and folders secured using NTFS permissions. These permissions secure the filesystem for both local and network access. For example, if user Mary Jones is granted NTFS Read permission on folder Pub and its contents (which are stored on her C: drive), she can log on to her machine, view the contents of Pub, and open any file stored in it. If Pub is then shared with the shared-folder permissions of Full Control for Everyone, she can log on to a different machine and access the Pub share and its contents over the network. Whether Mary is trying to access a resource on an NTFS volume locally or over the network, NTFS permissions will apply.
The most granular NTFS permissions are called special permissions. These permissions give administrators the highest degree of control over how users can access files and folders stored on NTFS volumes. By selecting different sets of special permissions, administrators can create custom permissions for files or folders that need special ...