You are viewing limited content. For full access, please sign in.

Question

Question

unable to delete a folder/documents

asked on December 5

Hello We have a customer who can create folder/documents but cannot delete them.   

They are an Admin in the LF System

They have  all Feature Rights and Assigned Privileges via LF Admin Console.

Access Rights are set at the Repository Level and all Access Rights boxes are checked assigned. 

When I check the Effective Rights, the Delete option and Delete Entry and Delete Document Pages are unchecked.  

I am looking at the Top-Level so I do not know where these effective permissions are flowing from.

There are no explicit denials or security tags set.

I do not see anything of issue in Volume Security as well.

 

Appreciate any feedback,

Jeff Curtis

0 0

Replies

replied on December 5

This is a common problem that comes up with file systems, the effective rights tab sure is helpful in solving half the battle though. In my experience solving these issues, the only way is through.

Go up one parent folder, and see if they have effective rights there, if not go up to the next parent until you find a parent that has rights or you hit the root, where solving the problem is more straight forward. Once they have rights to a parent or root folder, go back down, one level at a time.

It is tedious but it was far worse without the Effective Rights feature on Windows file servers. At least at every level, you know the rights for certain now even if the rights are obtained through levels of group complexity.

The Feature Rights and Assigned Privileges do not effect folder/file security at all. They just allow manually overriding security on folders/files you don't have rights to directly or browsing folders/files you don't have rights to.

 

0 0
replied on December 5

Hey Chad,

Thanks for the information. 

I should have been more clear, I have gone all the way to the Root level where the permissions are assigned and the Effective Rights show delete as unchecked, even though the Access Rights show Delete is allowed.

Also- They have no Repository Groups.

Jeff

0 0
replied on December 5

From the root troubleshooting is easy.

Just add delete rights, using their individual account, temporarily to the root folder. If this updates effective rights to show they can delete, they are just not in the proper AD groups.

If not, they MUST be in an AD group with Deny. Just have to find the deny checkbox in the root security window.

0 0
replied on December 7

Hey Chad,

They already had the delete rights. I tried to remove them and add them back, no luck.

 

They don't sync AD, these are just straight LF Repository User.

 

Here is something else interesting, I just tried to highlight a folder and click delete button and I got a Permission Denied 6317 error. 

 

Looking at another post, Justin Pava said this was due to an expired license, but their LSAP is good until 12.12.2018  (Expires Soon), but this should not cause this problem, correct?

 

Thanks again!!!

 

Jeff

0 0
replied on December 7

No, if they were to de-license remotely it would prevent login, not change any security. They normally do not de-license a server only because of LSAP expiration though.

You can jump on the VAR webinars which are hosted for VARs almost daily to get some one-on-one screeenshare help on this.

https://laserfiche.webex.com/mw3300/mywebex/default.do?siteurl=laserfiche&service=6

 

0 0
replied on December 10

Thanks Chad!!!

I have registered for today Forum.

 

Jeff

0 0
replied on December 10

Hey Chad,

Found the issue- It was the Everyone Group.  It had Delete Denied at the Root.

 

Once Kathleen from LF Pre-Sales saw this she had me uncheck it and then the functionality worked for the Admin account.

 

Thanks for the advice and pointer to the Webinar (I always forget about that :) ),

 

Jeff

0 0
replied on December 10

Good deal. The webinar is very helpful

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.