Permissions on File System Objects

Previous page
Table of content
Next page

When setting ACLs in the file system, Setup generally first examines the ACL to see if there are any explicit (that is, noninherited) ACEs on the folder. If there are, then Setup assumes that one of two cases applies: either Setup has previously stamped ACLs on this folder, and there is no need to do so again, or an administrator has manually adjusted permissions to his or her liking, in which case Setup should not overwrite those settings. The effect is that, in the default case, Setup stamps file system permissions on a clean install, but does not modify them on reinstalls.

Installation Directory and Subdirectories

For the default installation folder, Setup reads the ACL from the Program Files folder and duplicates it; the permissions shown in Table B-23 are those that exist by default on Program Files.

Table B-23: Permissions Applied to Installation Directory

Account

Allow/Deny

Inherit

Right

Notes

During server installation (if no preexisting explicit ACEs)

Authenticated Users

Allow

Yes

Read & Execute

   

Server Operators

Allow

Yes

Modify

   

Administrators

Allow

Yes

Full Control

 

CREATOR OWNER

Allow

Yes

Full Control

 

TERMINAL SERVER USER

Allow

Yes

Modify

 

SYSTEM

Allow

Yes

Full Control

 

Table B-24: Permissions Applied to Mailroot Directory

Account

Allow/Deny

Inherit

Right

Notes

During server installation (if no preexisting explicit ACEs)

Everyone

Allow

Yes

Full Control

 

ANONYMOUS LOGON

Allow

Yes

Full Control

Required for anonymous Simple Mail Transfer Protocol (SMTP) message submission

Table B-25: Permissions Applied to Exchweb Directory

Account

Allow/Deny

Inherit

Right

Notes

During server installation

Authenticated Users

Allow

Yes

Read

 
Table B-26: Permissions Applied to Exchweb\Bin Directory

Account

Allow/Deny

Inherit

Right

Notes

During server installation

Authenticated Users

Allow

Yes

Read & Execute

 
Table B-27: Permissions Applied to Exchweb\Bin\Auth Directory

Account

Allow/Deny

Inherit

Right

Notes

During server installation

ANONYMOUS LOGON

Allow

Yes

Read

 
Table B-28: Permissions Applied to Other Exchweb Subdirectories

Account

Allow/Deny

Inherit

Right

Notes

During server installation

ANONYMOUS LOGON

Allow

Yes

Read

These permissions are applied to the Controls, Cabs, IMG, Views, and Help directories unless other ACLs have already been stamped there



Previous page
Table of content
Next page
Secure Messaging with Microsoft Exchange Server 2003
Secure Messaging with MicrosoftВ® Exchange Server 2003 (Pro-Other)
ISBN: 0735619905
EAN: 2147483647
Year: 2004
Pages: 189
Authors: Paul Robichaux
BUY ON AMAZON
The .NET Developers Guide to Directory Services Programming
SQL Hacks
Cisco CallManager Fundamentals (2nd Edition)
Quartz Job Scheduling Framework: Building Open Source Enterprise Applications
The Oracle Hackers Handbook: Hacking and Defending Oracle
DNS & BIND Cookbook
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy