windows 2003 server directory access problem
in [Windows Servers]
|
From: pt on 8 Jun 2010 06:26 hi,all I install oracle server 9.2 on a 2003 server ,and the ora92 directory access permission is as below: D:\oracle>xcacls ora92 D:\oracle\ora92 NT AUTHORITY\Authenticated Users:(OI)(CI)(special access:) READ_CONTROL FILE_READ_DATA FILE_READ_EA FILE_EXECUTE FILE_READ_ATTRIBUTES BUILTIN\Administrators:(OI)(CI)F NT AUTHORITY\SYSTEM:(OI)(CI)F and I use a normal user login in the system and use whoami show that I am in the "Authenticated Users" groups, but if I cd ora92, it shows that I don't have the permission and if I dir ora92, it shows no ora92. What is the problem? On another machine, It is the same situatiaon , and after I change permission to NT AUTHORITY\Authenticated Users:(OI)(CI)R I can cd/dir the directory and run the oracle application. So what does (OI)(CI)(special access:) READ_CONTROL FILE_READ_DATA FILE_READ_EA FILE_EXECUTE FILE_READ_ATTRIBUTES mean? and what is difference between the NT AUTHORITY\Authenticated Users:(OI)(CI)R? Many thanks, Pantao
From: jaajog on 12 Jun 2010 05:43 (R) means all the necessary ACLs set for read-only access. You have defined too restrictive special ACL permissions, I believe you need at least List Directory rights. "pt" wrote: > hi,all > > I install oracle server 9.2 on a 2003 server ,and the ora92 directory > access > permission is as below: > > D:\oracle>xcacls ora92 > D:\oracle\ora92 NT AUTHORITY\Authenticated Users:(OI)(CI)(special access:) > READ_CONTROL > FILE_READ_DATA > FILE_READ_EA > FILE_EXECUTE > FILE_READ_ATTRIBUTES > > BUILTIN\Administrators:(OI)(CI)F > NT AUTHORITY\SYSTEM:(OI)(CI)F > > and I use a normal user login in the system and use whoami show that I am > in the "Authenticated Users" groups, but if I cd ora92, it shows that I > don't > have the permission and if I dir ora92, it shows no ora92. What is the > problem? > On another machine, It is the same situatiaon , and after I change > permission to > > NT AUTHORITY\Authenticated Users:(OI)(CI)R > > I can cd/dir the directory and run the oracle application. > > So what does (OI)(CI)(special access:) > READ_CONTROL > FILE_READ_DATA > FILE_READ_EA > FILE_EXECUTE > FILE_READ_ATTRIBUTES > mean? and what is difference between the NT AUTHORITY\Authenticated > Users:(OI)(CI)R? > > Many thanks, > Pantao > > > . >
|
Pages: 1 Prev: Windows 2000 server user names Next: Server 2003: folder size quotas? |