This user right determines which users can traverse directory trees even though the user may not have permissions on the traversed directory. This privilege does not allow the user to list the contents of a directory, only to traverse directories.

This user right is defined in the Default Domain Controller Group Policy object (GPO) and in the local security policy of workstations and servers.

Default:

• On workstations and servers:
  
  
  • Administrators
    
    
  • Backup Operators
    
    
  • Power Users
    
    
  • Users
    
    
  • Everyone
    
    
• On domain controllers:
  
  
  • Administrators
    
    
  • Authenticated Users
    
    

You can configure this security setting by opening the appropriate policy and expanding the console tree as such: Computer Configuration\Windows Settings\Security Settings\Local Policies\User Rights Assignment\

For specific instructions about how to configure security policy settings, see Edit security settings on a Group Policy object.

For more information, see:

• User Rights Assignment
  
  
• Assign user rights for your local computer
  
  
• Security Configuration Manager tools