We have some files that we want to restrict the viewing of the file itself to a group of users, but allow the folder entry, document title, to be seen by all.
Is this possible with ACL rights on the folder or do I need to go one step further into Security Labels on the fodler contents?
Go to Solution.
Pretty common need. One general approach:
1. Have to set a preference such that when you edit folders you can see / select the domain that applies to the folder (default is hidden).
2. In Policy Admin, create a new domain. In it, Deny Read to the general population, then provide Read to specific users (this overrdies DENY).
3. Edit the folder and select the new domain.
Now the folder gets all rules for the context plus those from the new domain.
Have to document what you have very carefully - nightmare trying to troubleshoot otherwise.
View solution in original post