POSIX to Inherit Permission

Can you switch from POSIX to Inherit Permission under the AFP services with out any issues. I am guessing it would be a good idea to delete the .ds store files as well as run disk utility on the drive correct?

You can inherit permissions if using ACLs when the volume you want to share folders from are handled by ACLs. The first folder/volume "level" in a "share" are never using inherited permissions though.
If you want to use Panther style inherited permissions the volume can't be set to be "handeled" by ACLs.
If changing from handled/not handeld by ACLs on a "share"-volume - reboot.
Check that ACLs are in effect by checking info on a shared folder (looks different than on a non ACL handled volume).
If you want/need inherited permissions on a Tiger server - use ACLs.

Similar Messages

  • Files Dissapear after Setting Inherit Permission Model

    Our workgroup was continually having read only problems working on files that we each had created locally.
    After reading this:
    When to use Inherit Permissions
    Generally, a share point should use the standard permissions model, since it will make new files in the same manner as those created locally on a client volume. Some programs may depend on this, even when storing data files on a network volume.
    However, if your use of the server includes the need to share and communally-edit data files such as word processing documents, graphics, or other application program data, use Inherit Permissions on the share point that stores the shared data.
    Warning: Inherit Permissions should never be used on a share point that hosts users' home directories.
    I created a test share point and changed the permissions to inherit. Success! All documents that we placed on the server at this point were able to be edited and saved by various users.
    I applied these same settings to the rest of our server and our most recent project folder vanished!
    Our files are in a folder inside the Users folder on the server, is that the reason why we had this problem? Should our share point be somewhere else on the server?
    Any help would be appreciated.
    xServe G5 2.0 GHz   Mac OS X (10.3.9)  

    Check if you have the Adobe PCD and SLStore folder available under /Library/Application Support/Adobe. Is so, then follow the solutions mentioned unde the below article.
    http://helpx.adobe.com/x-productkb/policy-pricing/configuration-error-cs5.html
    If you donot see those folders, you might have accidently deleted them. Re-install will be the best option.

  • Deleting all inherit sub-folders permission and reassigning to specific group

    Hi,
    i am trying to assign sub-folders level permission in sharepoint document library. Want to delete all previous inherit permission first and then assign  sub-folders permission to specific group. i am having problem with following code, cannot make a
    call to the function. Could you tell me what should i modify the code to work properly.
    Thanks in advanced
    using System;
    using System.Collections.Generic;
    using System.Linq;
    using System.Text;
    using Microsoft.SharePoint;
    namespace ManageFolderLevelPermission
        class FolderLeverPermission
            static void Main(string[] args)
                //Connect to Sharepoint Site
                SPSite oSPSite = new SPSite("http://nyc01d1sp:8080/");
                //Open Sharepoint Site
                SPWeb web = oSPSite.OpenWeb("/hr/DI/");
                //Get the Sharepoint list item for giving permission
                foreach(SPFolder folder in web.GetFolder("http://nyc01d1sp:8080/hr/DI/docs/").SubFolders);
                setPermissions();
            private static void setPermissions(SPFolder folder,SPSite oSPSite, SPWeb web)
                SPGroupCollection spc = web.SiteGroups;
                //Break the role inheritance in order to assign individual rights on folders
                if (!folder.Item.HasUniqueRoleAssignments)
                    folder.Item.BreakRoleInheritance(true);
                while (folder.Item.RoleAssignments.Count > 0)
                    try
                        folder.Item.RoleAssignments.Remove(0);
                    catch (Exception)
                        break;
                //Role Assignment For the Current User
                SPUser CurrentUser = SPContext.Current.Web.CurrentUser;
                SPGroup group = spc["GroupName"];
                SPRoleAssignment roleAssignment = new SPRoleAssignment((SPPrincipal)CurrentUser);
                roleAssignment.RoleDefinitionBindings.Add(web.RoleDefinitions.GetByType(SPRoleType.Administrator));
                folder.Item.RoleAssignments.Add(roleAssignment);
                //Role Assignment for the Group "Contentteam - Management"
                roleAssignment = new SPRoleAssignment((SPPrincipal)group);
                roleAssignment.RoleDefinitionBindings.Add(web.RoleDefinitions.GetByType(SPRoleType.Administrator));
                folder.Item.RoleAssignments.Add(roleAssignment);            
                oSPSite.AllowUnsafeUpdates = true;
                folder.Item.Update();

    Hi Hemendra,
    Thanks for your reply. Actually i am trying to do two things here. First i am creating sub-folders using following code. And then trying to assign individual group permission on these sub-folders using following Powershell script. Now problem is when i am
    creating sub-folders, its also inheriting all the parent permission. Lets say i have customer folder name "Pepsi" and it has 4 sub-folders (like Account Management, Legal Drafts, Executed.. etc) . Now i want to assign individual group permission to each Sub-folder
    but root folder (Pepsi) should remain all the parent permissions. i did try to remove the permission first and then assigned permission to sub-folders. i was able to assign individual group permission to sub-folders but problem is, its also assigning Limited
    Access to the root folder. so basically i cannot see the folder as the root folder has limited access. Please let me know how can achieve that.
    using System;
    using System.Collections.Generic;
    using Microsoft.SharePoint;
    namespace Add_SubFolders
        class CreateFolders
            static void Main(string[] args)
                var foldersList=new List<string>();
                SPSecurity.RunWithElevatedPrivileges(delegate()
                    try
                        using (SPSite site = new SPSite("http://nyc01d1sp:8080/"))
                            using (SPWeb web = site.OpenWeb("/lel/DB/"))
                                web.AllowUnsafeUpdates = true;
                                    foreach (SPFolder folder in web.GetFolder("http://nyc01d1sp:8080/lel/DB/docs").SubFolders)
                                        if (folder.Url.ToString() != "/docs/Forms" && folder.Url.ToString() != "/docs/")
                                            foldersList.Add(folder.Url);
                                            SPFolder subFolder = web.GetFolder(folder.Url);
                                            Console.WriteLine("SubFolder is creating.....");
                                            subFolder.SubFolders.Add("Account Management");
                                            subFolder.SubFolders.Add("Legal Drafts");
                                            subFolder.SubFolders.Add("Executed");
                                            subFolder.SubFolders.Add("Sales");
                                        folder.Update();
                                        Console.WriteLine("SubFolder has been created");
                                    web.AllowUnsafeUpdates = false;
                    catch (Exception ex)
                        ex.Message.ToString();
      Power Shell Script to assign individual group to specific folders:
    Add-PSSnapin Microsoft.SharePoint.PowerShell -erroraction SilentlyContinue
      #$site = new-object Microsoft.SharePoint.SPSite("http://nyc01d1sp:8080/lel/DB/")
      #$site = Get-SPSite ("http://nyc01d1sp:8080/")
      $web= Get-SPWeb("http://nyc01d1sp:8080/")
      #$web = $site.OpenWeb()
      function GrantGroupPermission($groupName)
       [Microsoft.SharePoint.SPGroupCollection]$spgroups = $web.SiteGroups
       [Microsoft.SharePoint.SPGroup]$spgroup = $spgroups[$groupName]
       Write-Host $spgroup.Name -ForegroundColor Red
       $sproleass=new-object Microsoft.SharePoint.SPRoleAssignment([Microsoft.SharePoint.SPPrincipal]$spgroup)
       $folder.BreakRoleInheritance("true")
       $sproleass.RoleDefinitionBindings.Add($web.RoleDefinitions["Contribute"])
       $folder.RoleAssignments.Add($sproleass);
       Write-Host "Permission provided for group ", $groupName
      $doclib=[Microsoft.SharePoint.SPDocumentLibrary]$web.Lists["Shared Documents"]
      $foldercoll=$doclib.Folders;
      foreach($folder in $foldercoll)
       Write-Host $folder.Name
       if($folder.Name.Equals("Account Management"))
        GrantGroupPermission("Test Group")
       if($folder.Name.Equals("Executed"))
        GrantGroupPermission("Legal Group")
       if($folder.Name.Equals("Legal Drafts"))
        GrantGroupPermission("Legal Group")
       if($folder.Name.Equals("Sales"))
        GrantGroupPermission("Sales Group")
      Write-Host "Completed...."
      $web.Close()
      $web.Dispose()
      #$site.Dispose()

  • Inherit and POSIX buttons disabled for AFP

    When I go in the protocols Pane of the Workgroup Manager, the settings for AFP won't let me chose between POSIX or Inherit behaviour. The buttons are disabled.
    The Windows setting let me do this though.
    How can I get control back over those buttons and the Inherit behaviour?

    Hi
    If the Server is 10.4/x disable ACLs on the Volume. WGM > Share Points > All and select the volume, next select General and untick 'Enable ACLs for this volume'. If the Server is 10.5 you have to use the command line:
    sudo fsaclctl -p path -d disable
    Regardless of which server version it is whenever you disable/enable ACLs always restart the server afterwards.
    Hope this helps, Tony

  • Default File Permission not being inherited from parent Share folders

    I'm having some trouble with file permissions
    on one of my 10.4.7 file servers (running XServe).
    New folders under Shared folders are not getting their
    permissions from the parent folders.
    Share permission is owner:rw,group:rw,everyone:none
    but a new folder created below that becomes
    owner:r+w,group:r,everyone:r
    and the owner for the new folder is the user who
    created it and not the admin (for the machine).
    I have the default permission to set to inherit permission
    from parent but that doesn't seem to be working.
    I have couple other Xserve 10.4.7 file servers that
    is behaving the way I want, with default permission
    is being inherited from the parent folders, and I've compared them but cannot find any difference between
    the two in their settings.
    Thank you,
    Tadashi

    If you deny read and execute access for any parent folder, you've denied the ability to access its contents. The POSIX execute bit for folders is the switch that determines whether or not the folder's contents can be viewed, listed, or searched. If the contents are not enumerable, then it doesn't matter what their privileges are.
    But be careful. Just not allowing execute for the POSIX owner, POSIX group or POSIX everyone else field may not be sufficient if you're using Effective Permissions. In this case, you'd want to inspect your ACL entries for the parent to ensure that the following controls were not in relevant ACL Allow entries: readextattr, readattr, readsecurity, list, and search. You could also create an ACL Deny entry which denies these five controls for the group or user you want to block out; but don't block the Everyone or Authenticated Users group because ACL Deny rules are evaluated in such a manner that they "subtract from" ACL Allow and POSIX permissions:
    E <=> (P U A)\D
    Effective Permissions (E) are logically equivalent to the union of (U) applicable POSIX permissions (P) and applicable ACL Allow entries (A), taking away (\) applicable ACL Deny entries (D).
    Further, POSIX permissions, P are defined as P <=> (u xor g xor o); they are either the permissions of the owner (u), group (g), or everyone else (o) fields, but not any combination of the two or three.
    --Gerrit

  • At a loss need some help simple share permission problem

    OSX Server 10.4.8 stand alone none AD (none ACL)
    All current updates applied.
    Since reinstalling the server software to current version (complete format reinstall) the existing raid volume is refusing to allow a simple shared folder with inherit permission to allow the assigned group to have r/w access when a user creates a folder in the volume.
    So volume shared set owner r/w usergrp r/w
    user creates a folder permissions become owner r/w grp (usergrp) r
    So I mount a firewire drive to the server and set the same permissions as above to a folder on that volume and hey presto when a user saves a new folder in inherits the permission as owner r/w and group (usergrp) r/w
    So any ideas what is stopping this raid volume allowing the same permissions to work I am at a loss (it worked before reinstall and update to current version)
    Help!

    OSX Server 10.4.8 stand alone none AD (none ACL)
    All current updates applied.
    Since reinstalling the server software to current version (complete format reinstall) the existing raid volume is refusing to allow a simple shared folder with inherit permission to allow the assigned group to have r/w access when a user creates a folder in the volume.
    So volume shared set owner r/w usergrp r/w
    user creates a folder permissions become owner r/w grp (usergrp) r
    So I mount a firewire drive to the server and set the same permissions as above to a folder on that volume and hey presto when a user saves a new folder in inherits the permission as owner r/w and group (usergrp) r/w
    So any ideas what is stopping this raid volume allowing the same permissions to work I am at a loss (it worked before reinstall and update to current version)
    Help!

  • Inherit Permissions from parent

    If I were to use Inherit permissions from parent instead of standard POSIX on a share, what happens
    when you propergate permissions? Do permissions that you explicitly set get changed by the parent folder?
    Are there any issues I should be aware of before trying Inheritted permissions?
    The reason I want to change is because I have folders on my RAID that for instance hold raw un-touched images, whoever saves the files into this folder becomes the owner and everyone is read only, which is no good if someone else wants to make changes and save over the image, I have ACL set to try and overcome this, but Photoshop doesn't respect ACL and just goes by the POSIX permissions. Which means users are having to save to desktop and the drop the file in the raw image folder to replace it - which is ok but not perfect.
    If I were using Inherit permissions and set the raw folder to everyone read and write, then in theory any files added into the folder would be read and write for everyone, is this correct? if so, what would happen to the permissions when a second user edits the image and re-saves it, is it still inheritting the read write permissions?
    Hope this makes sense and i'm not rambling too much, but with 3Tb of files on the RAID I can't afford to experiment and screw up the permissions on the existing files else I'll be killed by 10 angry designers!

    Did you ever find an answer to this? I'm having the same problem and wondering if it's simply a 10.5 server glitch. You shouldn't have to use ACL to get around it and as far as I know, if you set POSIX to inherit permissions from parents, that's exactly what should happen. But it doesn't for me either. Whoever creates a folder on our RAID becomes the new owner and staff is read-only.

  • Problem about foder permission.

    I want to set "Read" permission to a user for folder A,but the user will not see the documents of folder A .So I set permision in detail iview of folder A and add "Read" permission for the user ,and the press "Save Permissions" button. But I did not press "Reset Child Permissions".
    But when the user navigation to folder A, he has also "Read" permission for the documents  of folder A. Is this a bug?

    sorry, I reframe what I want to do again.
    I want to test the functions of the three button in permission iview,"Save Permissions","Restore Defaults" and "Reset Child permissions".
    I created a folder "F1",in which I created three documents,"D1","D2" and "D3".
    A user named "testuser" has not any permission for them. so he doesnot see anyone.Now I want he can see "F1" but not "D1","D2" and "D3".So I set permission for "F1" ,add "Read" permission for "testuser" and press button "Save Permissions" but not "Reset Child permission".I think "D1" ,"D2" and "D3" do not inherit permission from "F1" in this case.But I am wrong."testuser" can also see the three documents . So I think there is a system error.
    I wonder if you can understand me.If so ,please help me.
    Best Regards,

  • Share List item with unique permission

    Hi, I am using Shared With Property in sharepoint 2013 List.
    I stoped inheriting permission for List.
    But when i am creating new list item in the List, it inhering permission from parent
    How to set default setting as stop inheriting permissions for new list item.?
    Thanks in advance

    What kind of list are you using? If you are using one of the following, or you built your list from one of the following, then you can use Item-Level Permissions.
    Announcements
    Calendar
    Custom lists
    Discussion Board
    Links
    Surveys
    Tasks
    To use Item-Level Permissions: Go to the List ribbon, click List Settings and then click Advanced Settings.
    Mike Smith TechTrainingNotes.blogspot.com
    Books:
    SharePoint 2007 2010 Customization for the Site Owner,
    SharePoint 2010 Security for the Site Owner

  • Contribute + Inheritance permission from parent site permission conflict

    Hi All,
    In one of my site collection, i have many sub folder which is placed to inherit permission from parent site. I have group who have contribute access to the parent site.  But they getting access denied when they try to access the folder. 
    As a workaroud, when i change the full toolbar to No toolbar.. this is working fine as expected. But when i revert back .. it is throwing access denied error on accessing the site

    Are these folders placed in any library ? or any web part ? If they are inside library, is there any inheritance break on library level ? What is the result of check permission if you check it for the group on library and folder level ? Is it giving you
    Limited access, none or contribute?
    Let us know your results, thanks
    Regards,
    Pratik Vyas | SharePoint Consultant |
    http://sharepointpratik.blogspot.com
    Posting is provided AS IS with no warranties, and confers no rights
    Please remember to click Mark As Answer if a post solves your problem or
    Vote As Helpful if it was useful.

  • Setting up access points for public access

    Okay, here's the situation. I have a PowerMac G4/1.25GHz dual processor running Server X 10.3.9 with four Mac clients (a small law office). Up until recently, everyone had also been running (client) 10.3.9, but I started upgrading some of them to 10.4 (currently 10.4.5). When I did this, they started running into problems with Word sometimes giving a "network or file permission error" when attempting to save documents to the server. After weeks of posting questions to Word support and trying everything in the book that I could think of, I found Apple recently posted what appears to be the answer to this (article 302979, "Microsoft Office applications fail to save to a server volume." The problem? I have all four users logging into the same account on the server, and when one of them logs out, it zaps everything in a Microsoft-created temp folder on the server, including temp files created by open documents created by other clients. Sheesh.
    I had everyone set to use the same account because they have no need of document security -- everyone should be able to get into everyone else's files on the server, period. So, because of this snafu, I've created separate accounts for each of the users. My problem now is that, if user "X" creates a file or folder on the server, user "Y" cannot modify it because it is created as read-only. Strangely, if someone modifies an existing file, it doesn't change the user rights at all -- not sure why.
    I'll admit to being a bit of a novice with Server X but am familiar with parent/child folder permissions -- I think I've got everything set right, but I must obviously be missing something. Here's what I've got setup, and what I've tried. If anyone can point out how I've got this setup improperly, I really need to get this fixed... thanks.
    I have a single sharepoint ("workfiles"). I used the "public" folder as an example, and set the owner to "root" and the group to "staff". Further, I set the owner, group and everyone privileges to "read & write". I've also tried setting the group to "admin". All the individual user accounts I've set are also setup as admin users. I've tried setting each users's primary group as "staff (20)" or "admin (80)". I've copied all these privileges to all enclosed items, which does reset everything to public access, but as soon as someone creates a new folder or file, that folder/file becomes private to that user (it shows up with the creator's username as "owner" (r&w), group as "admin (read-only), and others as "read-only" as well.
    PS: If upgrading the server to Server X 10.4 would help, I'm sure I can arrange that.

    In our law firm, the server (10.4.4), we have set access to read/write access so staff can open client files/folders, edit then and close, etc. That seems to be working okay. Before the tech worked on permissions, if someone created a letter another staff member could open it, but it was read-only.
    The problem we are having is that if a file that is clicked on stationery pad and we want to edit it, it will not allow us to. For example, if we need to edit our letterhead that normally comes up as an untitled document, if I unclick the stationery pad box, it unclicks, but it still comes up as an untitled document. I even tried to unclick a stationery pad on a document that I created before the server upgrade and it wouldn't let me.
    If I create a brand new document and put it on stationery pad, it comes up untitled as it should. If another user on another desktop wants to make changes, they unclick the stationery pad box, but when they open it, it comes up untitled and in checking get info, the stationery pad is selected.
    The tech set it up as follows:
    Share Points and All tabs:
    General tab: box to share this item and its contents is clicked
    Access tab: owner, group and everyone have read/write privileges
    If select dial at bottom to propagate permissions, all boxes are checked, except for access control list, which is shaded.
    I cannot drag/add anything to the control list and the pencil and the minus sign is shaded
    Protocol tab: Both boxes, share item using AFP and Allow AFP guest users are clicked. But for better security in reading the article, this should be unchecked.
    Also under the protocol tab: the inherit permission from parent radio dial is clicked, not the use standard POSIX behavior.
    What are we missing?
    Thanks, Cheryl

  • How should I setup my users and netork? Or fix Permissions

    I've been running OS X Server 10.2.8 and all was fine but I'm having one heck of a time getting permissions to propigate. Anyway, we ran out of disk space and I just added an 80GB drive to the raid via Software Raid. I am copying everything back onto the raid now. The raid is seperate from the startup disk and set as a sharepoint as inherit permission from parent.
    The problem I'm having is that when trying to set the permissions it doesn't propigate them properly. I don't want to click on 18,000 items to set the permission.
    We are an art department with 10 users. There is an Archive folder that is read only, a user folder that each user can see the other users items but only write to their own folder, prepress folder for sending things to prepress, item development that is read only.
    I'm trying to set everything in the Archive as read only and it only propigates the 1st level of folders only. No items or subfolders.
    I am not using home directories or any net booting. Basically a share point with different folders inside it. Each folder is assigned a group. In the users folder there are 10 folders with different users (groups) assigned to them. The users set up as groups can read and write and everyone else is read only.
    Access settings are typically:
    Owner (Admin) Read Write
    Group (User setup as a group) Read Write
    Everyone Read Only
    Some folders that I want to be read only are setup as:
    Owner (Admin) Read Write
    Group (Group such as Art Deparment or prepress) Read Only
    Everyone Read Only
    Does this setup look right for a small workgroup? Does anyone know how to propicate the permissions? The protical buttons are greyed out on any folder down from my sharepoint. The say Use standard POSIX behavior.
    Someone help please. Thanks.

    Nevermind. There was a post over in the Terminal forum that mentioned the program BatChmode. That did the trick and fixed the permissions.

  • File will not go off stationery pad

    In our law firm, the server (10.4.4), we have set access to read/write access so staff can open client files/folders, edit then and close, etc. That seems to be working okay. Before the tech worked on permissions, if someone created a letter another staff member could open it, but it was read-only.
    The problem we are having is that if a file that is clicked on stationery pad and we want to edit it, it will not allow us to. For example, if we need to edit our letterhead that normally comes up as an untitled document, if I unclick the stationery pad box, it unclicks, but it still comes up as an untitled document. I even tried to unclick a stationery pad on a document that I created before the server upgrade and it wouldn't let me.
    If I create a brand new document and put it on stationery pad, it comes up untitled as it should. If another user on another desktop wants to make changes, they unclick the stationery pad box, but when they open it, it comes up untitled and in checking get info, the stationery pad is selected.
    The tech set it up as follows:
    Share Points and All tabs:
    General tab: box to share this item and its contents is clicked
    Access tab: owner, group and everyone have read/write privileges
    If select dial at bottom to propagate permissions, all boxes are checked, except for access control list, which is shaded.
    I cannot drag/add anything to the control list and the pencil and the minus sign is shaded
    Protocol tab: Both boxes, share item using AFP and Allow AFP guest users are clicked. But for better security in reading the article, this should be unchecked.
    Also under the protocol tab: the inherit permission from parent radio dial is clicked, not the use standard POSIX behavior.
    What are we missing?
    Thanks, Cheryl

    My backlight stays on the whole time while charging as well - even after charging for more than 2 hours. (My setting is set for the backlight to turn off after 5 seconds.) The backlight stays on all throughout charging - the screen repeatedly flashes a big red circle with a slash through it saying "Do not disconnect." The charging battery icon appears very small in the upper right corner of the screen.
    I have tried exiting iTunes before or while charging, which doesn't seem to help either.
    Any suggestions as to how to get my backlight to turn off while charging? It is very annoying, and logic dictates that the ipod would charge faster if the backlight was not on.
    2005 IBM Laptop   Windows XP  

  • Default Group Ownership and Permissions

    All new files created by a standard user (User1) have group assigned as "staff" and group permissions set to "Read only."  How do I change the default group and ownership permissions for newly created files?
    Said another way: I want new files created by User1 to have group = "Accounting Group" and group permisions = "Read & Write".

    You can accomplish what you want to do by using ACLs. First go to System Preferences -> Users & Groups, and make a new group called "accountinggroup". Add the users you want to the group.
    You will then need to make a folder in which to store all the files to be shared with this group. Put it in some easily accessible place like in /Users/Shared.
    Then log in to an admin account and open Terminal. Paste in all of this and the press return:
    sudo chmod -R +a "accountinggroup allow delete,chown,list,search,add_file,\
    add_subdirectory,delete_child,file_inherit,directory_inherit" \
    Then drag the folder into the Terminal window and press return again.
    From then on, any file that is newly created in or copied to any location within that folder hierarchy will have read and write privileges for all users in accountinggroup.
    You sir are a genius.
    I have been trying to utilise a users iMac a "central file storage" for a small business client (all new Lion Machines). I was having so many issues with Lion's POSIXs permissions and also Lion's new versions feature.
    Every time users saves files to the shared folder they would inherit permission from the computer that created the file. Thus is another user logged on and opened the file it would be 'Locked' and have to be duplicated or the users would have to manually edit permission using 'Get Info'
    I have applied the ACL via terminal and now it works like a dream! All files have that are put into the shared folder have a group with 'custom' permissions and any one can use and modify the files, provided they have log in credentials.
    The only trap i would warn people of is do not use typical group names like "Staff", "workgroup" etc. I found that using those was problematic. I opted for employees.
    Thanks again Király

  • Strange security issue with reports in Web Analysis.

    Hi All,
    I am working on Hyperion System 9.3.1 and Reports are developed using Web Analysis. To develop the reports I followed the following sequence.
    1) Developed the reports with admin rights on Web Analysis reports and Essbase cube.
    2) Create a group with users in Shared services and assign the following roles Analyst, Data Editor,Data Source Publisher,Dynamic viewer,Explorer,Viewer rights in Hyperion System 9 BI+ level and calc access for the database at Analytic Server level.
    3) Create a separate folder in Web Analysis studio and copy the WA reports there(say- reports).
    4) At workspace level, I gave the access on folder and on report.
    Now when I login as one of the member of the group I am unable to see the reports in the folder.
    I can see the reports when I login as an admin.
    Am I misssing anything or the security I gave is insufficient.
    Waiting for your reply.

    can you tell me what inherit permission you gave to make it work.
    I have a folder having a view access only. whenever i make new reports as admin...i cant see my new reports untill i refresh the "apply permission to children" options gain.
    But thats not what i m looking for...i want it come on its own when I create a report.

Maybe you are looking for