File System

Updated: March 28, 2003

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

File System

This security setting allows you to define access permissions and audit settings, and to take or assign ownership of files and folders.


GPO_name\Computer Configuration\Windows Settings\Security Settings\File System\

Default Values


Server Type or GPO Default Value

Default Domain Policy

Not defined

Default Domain Controller Policy

Not defined

Stand-Alone Server Default Settings

Not defined

DC Effective Default Settings

Not defined

Member Server Effective Default Settings

Not defined


The default permissions on files and folders allow full control by administrators and the system. Users have read-only permission, and the creator/owner can take or assign ownership of them. This security setting can be used to change these default permissions, or to set specific permissions for other users and groups.

This security setting does not appear in the local Group Policy object.

Community Additions