|
Posted by =?Utf-8?B?SVdTRUM=?= on September 20, 2005, 2:32 pm
If you were Registered and logged in, you could reply and use other advanced thread options
Hi,
Have you tried checkoing your Local and Domain security policies as well
to see if there are any other settings conflicting with the group policy -
we've had loads of problems in getting all the various policies to work as we
expect them to.
Cheers
IWSEC
www.iwsec.co.uk
"Roden" wrote:
> I am having trouble getting Bypass Traverse checking working on my Windows
> 2003 EE server in a Windows 2003 domain.
>
> I have set Bypass Traverse Checking to Authenticated Users via Group Policy.
> However I have a service account that can not delete a file in the C:\Temp
> folder. The service account has Modify permissions to the C:\Temp folder and
> no permissions to C:\
>
> Theoretically it should traverse C:\ and be able to find C:\Temp
>
> If I give the Service account the NTFS permission of "Travers Folder \
> Execute File" the service account can then delete the file in the C:\Temp
> folder.
>
> I do not understand this as Bypass Travers Checking should give the same
> results.
>
> The following TechNet article states "Traverse folder takes effect only when
> the group or user is not granted the Bypass traverse checking user right in
> the Group Policy snap-in".
>
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/ServerHelp/e4be109f-5547-4df8-90f0-4d885dc302e7.mspx
>
> Any idea on why Bypass Travers Checking does to appear to be applied?
>
| 
XML site map