Create file/folder permission without delete permission

file-permissions windows-7

Is there a way I can set create file/folder permissions for a user in Windows 7 without giving delete permission for a folder?

I don't want the user to delete any files in that folder, but he should be able to make new files,rename them, and copy new files to that folder. Is this possible in Windows?


You cannot disallow deletes and expect rename to work, as explained below.

Windows treats a file renaming operation as a deletion of the file and creation of a new file with the new name. Therefore, you absolutely must have one or both of the following two permissions:

  • Delete permission on the file itself, or
  • Delete Subfolders and Files permission on the folder that contains the file.

To complete the list, for renaming you require in addition the following permissions:

  • Write Data permission on the folder because of the new-file creation
  • Read Attributes permission to both the folder and the actual file
  • Synchronize permission to both the folder and the actual file
  • List Directory permission to the folder.

These permissions allow the rename command to check for the existence of the file and verify that the file's attributes (for example, the Read Only attribute) don't prevent the rename.


Right click the folder → PropertiesSecurityAdvancedPermissionsChange Permissions → <select user> → Edit. You can specify (deny) very detailed permissions in there, including the Delete permission

Enter image description here

BTW, don't use "CREATOR OWNER" (that was just an example). Use the actual user or group you wish to deny the permission to.


What you write what you want is not possible. If a user wants to rename a file this requires the right to delete it (see Server Fault or WindowsIT Pro).

If it is OK for you that users can create new files in the folder and do with them whatever they want, but not mess with other files (like in a shared temp folder), you can change the permissions for the folder. In Windows Explorer, right click/properties on the folder, Permissions, Advanced, and change permissions. The required rights are:

"this folder, subfolders, files": "Read, Write, Execute" (search folder, list folder, read attributes. read extended attributes, create files, create folders, write attributes, write extended attributes) for the users in question.

"only subfolders and files": full access for "CREATOR OWNER".

Related

USB stick mysteriously become write protected [duplicate]
Alternatives to Real Player
Export Office Excel table to csv using a macro
Specify different username when printing to a lpr printer
How to find the source of this BSOD? How to fix it?
How to determine version Intel Management Engine on Linux?
installing on a physical drive with virtualbox/Windows
Middle click tab opening stopped working in Firefox
Is there a way to use an inline PNG image in an Outlook e-mail?
Specify a specific worksheet to open for a Microsoft Excel workbook using a hyperlink
Upgrading Ubuntu 9.04 to 9.10 when Update Manager doesn't let you
How do I mount a software RAID1 (mirror) created by Windows in Linux using mdadm?