2 Replies Latest reply: Nov 23, 2017 6:20 AM by Gustav Gager RSS

    Distributed applications -> to domain users (with the need to deny for defined group)

    Mark Hay Jørgensen

      When distributing some of our applications, these are distributed to domain users across all domains, which works like a charm.

       

      We need to be able to add a deny group, containing ~50 users from across the domain forrest. which shouldn't be able to see the applications. This was possible when manually moving reloadet applications to the production enviroment shared folders, where the NTFS security was set on a folder by folder level.

       

      By implementing distribution of applications to said groups of users, we now don't have the same ability to throw in the DENY AD-group to the mix, as the security access-rights are set on a application level each time the application is reloaded and distributed.

       

      Any easy way to solve this?