Start FileCloud FREE Trial
Log in

Set Permissions on Folders in the User Dashboard

  • Your admin must give you the ability to set folder-level permissions. (If you are an admin, see Enable Folder-Level Permissions.)
  • Folder-level permissions can be used to set more detailed permissions on folder shares.  
  • They can only be set on the folders in My Files (your private store) .

  • They are useful if you share a folder with a group and then but want to add more restrictions for specific users. 

  • If you have the ability to set folder permissions, when you select a folder and click the Security tab in the right panel, a Manage Security button appears at the bottom.

    Example 1:

    An example of share permissions versus folder-level permissions:

    You share a folder of account records with a group that contains two account managers and an account holder. You give the group all permissions in the share.

    • You want the account managers to be able to make any changes to the folder, but you only want the account holder to be able to read and download its contents, so you add folder-level permissions and only give the account holder read and download permissions.
    • The managers can continue to perform all actions on the contents of the folder.

    Example 2:

    An example of share permissions combined with folder-level permissions that would not work:

    You share the same folder of account records from Example 1 with the same group that contains two account managers and an account holder. You give the group read and download permissions in the share.

    • You want the account managers to be able to make any changes to the folder, so, mistakenly, you add folder-level permissions give the account managers all permissions.
    • The managers can still only perform read and download actions on the contents of the folders.

      The most restrictive permissions from the share permissions and the folder-level permissions take precedence.

When a folder contains more folders inside it, the top folder is the parent and the sub-folders are children.

When you are applying folder-level permissions, if you check the Inherit Folder-Level Security option, a parent's permissions are applied to its sub-folders.

In general, a sub-folder can be in one of the following states:

  • The child, or sub-folder has all of the same permissions as its parent folder, plus additional permissions
  • The child, or sub-folder has all of the same permissions as its parent, and no additional permissions
  • The child, or sub-folder's permissions are not connected in any way to the parent folder and the sub-folder retains a separate set of permissions

When setting folder-level permissions in FileCloud, you have the following options:

OptionDescription
(tick)  Inherit PermissionsPermissions set in this folder are exactly the same as the top level folder's permissions

(error)  Don't Inherit Permissions

Permissions set in this folder don't inherit from any top level folder's permissions and are specific to only this folder


When you set folder-level permissions, you can select one or more of the following options:

ReadWriteDeleteShareManage
  • Allows downloading
  • Allows previewing
  • Allows uploading and modifying 
  • Allows creating files and folders 
  • Allows renaming 

Allows deleting

Allows sharing

Allows managing folder-level permissions


Permission Dependencies

If a permission can only be enabled if a second permission is enabled also, when you check the first permission, the second is automatically enabled.
Likewise, when you disable the second permission, the first is also disabled.

For example, write permission can only be enabled if read permission is enabled also, so if you enable write permission, read permission is automatically enabled. But if you disable read permission, write permission is also disabled.

The following table shows which permissions require others to be enabled.

PermissionOther permissions that must be enabled
Readnone
WriteRead
ShareRead, Write, Delete
Deletenone
ManageRead, Write, Share, Delete


How do I secure access to my folders?

To set folder-level permissions:

  1. In the User Portal, in My Files, check any folder or sub-folder.
  2. In the right panel, click the Security tab.

  3. Click the Manage Security button.


    The Manage Folder Level Security dialog box opens.

  4. To inherit folder permissions from its parent folder, check Inherit Folder Level Security.
    An Inherited Permissions section appears and displays the inherited permissions for users and groups that were given permissions to the parent folder.

    You can override inherited permissions by re-adding the user or group for the sub-folder and assigning new permissions. For example, in the image in Step 10, the full parent-folder access given to the user gabrielle_95@example.com is inherited, but then overridden and limited to read and write for the Account Names Folder sub-folder. 

  5. To give a user permissions for the folder, leave the Users tab selected, and click Add User.
    The Add User Permission dialog box opens.
  6. Enter a user email address or account name in the search box, and click Add.
  7. To give a group permissions for the folder, click the Groups tab, and click Add Group.
    The Add Group dialog box opens.
  8. Click a group, and click Add.
  9. Add any number of users and groups.
  10. To define folder permissions, below each user or group, check or uncheck the boxes defining types of security.
  11. Click OK.
    The Security tab in the right panel keeps a tally of the number of users and groups you have given custom permissions to and whether or not permissions are inherited:

Check Existing Folder Level Permissions

It is possible to check the custom permissions a user already has for a folder before you add additional custom permissions to the user for the folder.  Share permissions the user is given to the folder are not considered in this calculation.  Custom permissions for a group the user is a member of and individual custom permissions for the user are considered. In this case the individual custom permissions override the group custom permissions, so if a user's group can, for example, perform all actions on the folder contents, but the individual user can only read the contents, than effective permissions indicate that the user can only read the contents.

To check existing folder permissions:

  1. Select the folder and click the Security tab in the right-panel, then click the Manage Security button.
    The Manage Folder Level Security dialog box opens with the Security tab selected.
  2. Click the Check Access tab.
  3. Enter the email of the user whose access you want to check.
  4. Click Check user access.
    The dialog box lists the user's permissions. In the example below, the user belongs to a group that is not permitted to share or manage the folder.