Modifying XP Pro Permissions For Workgroup Computers
I had to do this today and I realized this wasn't something that was obvious to everyone, so I thought I'd make a quick post about it.
The command console has a command named "cacls" which allows you to manage NTFS permissions and this is built-in to XP and you can use it even if the UI doesn't give you a tool to manage these. Does this mean you can use this for XP Home as well? I don't know. I don't own Home Edition. I never have so I haven't been able to test this, but it would be easy for someone to confirm. If you do, please post a comment.
Anyway here's an example of the command. I created a folder with the path C:\Data for my Sql server account named (what else?) "sqlserver". I want to grant "change" (aka modify) permissions. You could use "Full Control", but Sql Server doesn't require Full Control, so why grant unnecessary rights?
WARNING: Incorrect use of cacls can cause you to loose access to the folder, even for administrators. Always use the /E switch as an argument unless you know what you're doing and intent to completely replace permissions on the folder.
- From the Windows "Start" menu, select "Run..."
- Type "cmd", then hit "Ok"
- Type the following in your command window:
cacls /E /T /G sqlserver:C C:\Data
/T will include the change for all subfolders.
/G is the "Grant" switch. Following /G should be the account name, then a colon followed by the permissions to grant. In this case "C" represents "Change". Then add the path of the file/folder which you're updating.
If you want to see additional options/parameters for cacls, just type "cacls /?" and you'll get the help printed to the window.