Permissions dialog box: Advanced page |
|
Permissions dialog box: Advanced page |
|
Use this page to control the advanced permissions to access Windows resources:
If you revoke this permission, the icons, shortcuts, and other default and user-defined items are removed from the desktop of the user, including Briefcase, Recycle Bin, My Computer, and My Network Places. Note that removing such icons and shortcuts does not prevent the user from using another method to start the programs or opening the items they represent.
If you revoke this permission, the user is blocked from making network files and folders available offline. This setting removes the Make Available Offline option from the File menu and from all context menus in Windows Explorer. As a result, the user cannot designate files to be saved on their computer for offline use. However, this setting does not prevent the system from saving local copies of files that reside on network shares designated for automatic caching.
If you revoke this permission, the Folder Options item is removed from all Windows Explorer menus and from Control Panel. As a result, the user cannot use the Folder Options dialog box.
If you revoke this permission, the File menu is removed from My Computer and Windows Explorer. This setting does not prevent the user from using other methods to perform tasks available on the File menu.
If you revoke this permission, the user is blocked from using Windows Explorer or My Network Places to map or disconnect network drives. This setting removes the Map Network Drive and Disconnect Network Drive commands from the toolbar and Tools menus in Windows Explorer and My Network Places and from menus that appear when you right-click the Windows Explorer or My Network Places icons. It also removes the Add Network Place option from My Network Places. This setting does not prevent users from connecting to another computer by typing the name of a shared folder in the Run dialog box.
If you revoke this permission, the shortcut menus are removed from the Desktop and Windows Explorer. Shortcut menus appear when the user right-clicks an item. This setting does not prevent users from using other methods to issue commands available on the shortcut menus.
If you revoke this permission, the Hardware page is removed from the Mouse, Keyboard, and Sounds and Audio Devices items in Control Panel. It also removes the Hardware page from the Properties dialog box for all local drives, including hard drives, floppy disk drives, and CD-ROM drives. As a result, the user cannot use the Hardware page to view or change the device list or device properties, or use the Troubleshoot button to resolve problems with the device.
If you revoke this permission, the computers in the user's workgroup and domain are removed from the lists of network resources in Windows Explorer and My Network Places. This setting removes the Computers Near Me option and the icons representing such computers from My Network Places. This setting does not prevent users from connecting to computers in their workgroup or domain by other commonly used methods, such as typing the share name in the Run dialog box or the Map Network Drive dialog box.
If you revoke this permission, all computers outside of the user's workgroup or local domain are removed from lists of network resources in Windows Explorer and My Network Places. This setting removes the Entire Network option and the icons representing networked computers from My Network Places. This setting does not prevent users from viewing or connecting to computers in their workgroup or domain. It also does not prevent users from connecting to remote computers by other commonly used methods, such as by typing the share name in the Run dialog box or the Map Network Drive dialog box.
If you revoke this permission, the shortcut bar is removed from the Open dialog box. This setting only affects programs that use the standard Open/Save As dialog boxes.
If you revoke this permission, the Properties command is removed from the My Documents context menu. It also prevents the user from changing the path to the My Documents folder.
If you revoke this permission, the Properties command is removed from the context menu for My Computer.
If you revoke this permission, the user is blocked from removing the Log off command from the Start menu.
If you revoke this permission, the My Network Places icon is removed from the desktop. This setting only affects the desktop icon. It does not prevent the user from connecting to the network or browsing for shared computers on the network.
If you revoke this permission, the Internet Explorer icon is removed from the desktop and from the Quick Launch bar on the taskbar. This setting does not prevent the user from starting Internet Explorer by using other methods.
If you revoke this permission, the Undock PC button is removed from the simple Start Menu, and the computer cannot be undocked.
If you revoke this permission, the notification area (also known as the system tray) is removed from the taskbar. The notification area is located at the far right end of the taskbar and includes the icons for current notifications and the system clock.
If you revoke this permission, the taskbar does not display any custom toolbars, and the user cannot add any custom toolbars to the taskbar. Moreover, the Toolbars menu command and submenu are removed from the context menu of the taskbar.
If you revoke this permission, the frequently used programs list is removed from the Start menu.
If you revoke this permission, the user is blocked from using System Restore. System Restore enables users, in the event of a problem, to restore their computers to a previous state without losing personal data files. Important: This setting only refreshes at boot time. Note: This setting is only available in the Home Edition and Professional versions of Windows XP.
If you revoke this permission, the user is blocked from changing the configuration of System Restore. Note: This setting is only available in the Home Edition and Professional versions of Windows XP.
If you revoke this permission, the user is blocked from running Windows Messenger. It also blocks Windows Messenger from loading automatically when the user logs on to Windows.
If you revoke this permission, the user is blocked from using Windows Explorer to create or modify rewritable CDs, if you have a CD writer connected to your computer. This setting does not prevent the user from using third-party applications to create or modify CDs using a CD writer.
If you revoke this permission, the Shared Documents folder is removed from My Computer.
If you revoke this permission, the user is blocked from opening the Microsoft Management Console (MMC) in author mode, explicitly opening console files in author mode, and opening any console files that open in author mode by default. As a result, the user cannot create console files or add or remove snap-ins. This setting does not prevent the user from opening MMC user-mode console files, such as those on the Administrative Tools menu. However, the user cannot open a blank MMC console window.
If you revoke this permission, the user is blocked from submitting alternate logon credentials to install a program. This setting suppresses the Install Program As Other User dialog box for local and network installations.
If you revoke this permission, the Security page is removed from Windows Explorer. This setting blocks the user from using the Security page on the Properties dialog box for all file system objects, including folders, files, shortcuts, and drives.
If you revoke this permission, the items in the All Users profile are removed from the Programs menu on the Start menu. By default, the Programs menu contains items from the All Users profile and items from the user's profile. If you enable this setting, only items in the user's profile appear in the Programs menu.
If you revoke this permission, the Manage command is removed from the Windows Explorer context menu that appears when you right-click Windows Explorer or My Computer. This setting does not remove the Computer Management item from the Start menu (Start, Programs, Administrative Tools, Computer Management), nor does it prevent users from using other methods to start Computer Management.
If you revoke this permission, the user is blocked from using Windows shell extensions that have not been approved by the administrator.
Copyright © 2008,
WinAbility® Software Corporation.
All rights reserved.