This script action sets up the security access rights for a directory,
file or directory tree using the Access Control List.
This function is used in a network environment to mass apply security
settings or to apply security settings as part of a delegation project.
Setting the security using the Setup
Security script action in UMRA is essentially the same as setting
the security using Windows 2000/2003 access control (ACL), with the one
major difference that in UMRA you can use variables for the target directories
and files. This allows you for instance to set the security settings for
a whole range of user directories in one sweep.
|
Property Name |
Description |
Typical setting |
Remarks |
|
Target directory or file |
The name of the source directory or file. The source directory can be
specified in two ways.
For local directories: <logical drive>\<Directory>\<Directory>
etc.
For remote and local directories: \\<computer>\<share>\<directory>\<directory>.
Example: "\\SERVER_A\Users\Data". |
|
The source directory must exist. The name
of the file or directory should not include any wildcard characters. |
|
Security |
The new security settings for the target directory
and / or files. Note that the original security settings will be overwritten. |
|
|
|
Propagation mode |
Specify "Yes" to set up the security
settings for a typical user account home directory. The ACE settings of
the specified target directory are explicitly set to the specified value
and then propagated to all child directories and subdirectories. All children
will inherit the ACE settings of the specified target directory. |
|
In most cases this will be the mode you need
to choose for setting up the (home directory) security. |
|
Recursive mode |
Specify "Yes" to set up the security
settings for the whole directory tree, including the specified directory,
subdirectories and files, subdirectories of subdirectories, etc. For all
directories and files of the directory tree, the security settings are
set identically. The main difference with the propagation mode is that
all children of the specified directory will have explicit ACE settings. |
|
Note that you cannot have both "Protected
propagation mode" and "Recursive mode" set to "Yes".
This option is suitable for Windows NT environments. |
|
Use backup and restore priviliges |
A flag indicating that backup and restore
privileges must be used to set up the security settings. This property
is required in case the logged on user has no access rights to the directories
and files that must be copied. The logged on user must have the corresponding
access rghts configured on the target computer. |
No |
|
|
Continue on error |
A flag indicating that the action must continue
with the next file or directory if an error occurs when editing the permissions
of a file or directory. |
Yes |
|
