Groups and policy effects on users

By madterps ·
I'm trying to learn group policy on Microsoft Server 2003. Basically, what I am getting from what I read so far is that the site policy would be read first, then the domain policy, then the OU policy then the local policy. Basically what is ever is stricter from one policy to the next is used as it goes through the process and basically proliferates to a permission at the end for the user. As well the NTFS permission doesn't do anything unless it's denying usage. Am I correct or am I wrong?

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Answers

Collapse -


by cmiller5400 In reply to Groups and policy effects ...

*-- As far as NTFS, say if you don't have the write right, it won't allow you to write to it even if you don't specify a deny. Deny will always deny no matter how many times you grant the allow. That is why you never deny the everyone group in permissions.

Related Discussions

Related Forums