Depending on the complexity of your installation, you might like to consider the freeware StartBuild utility, available from http://thethin.net <http://thethin.net> . It will generate a unique start menu for each of your users, based on their NT group memberships. Download from http://thethin.net/startbuild.zip <http://thethin.net/startbuild.zip> -----Original Message----- From: Matthew Shrewsbury [mailto:MShrewsbury@xxxxxxxxxxxxxxx] Sent: 01 October 2004 21:13 To: thin@xxxxxxxxxxxxx Subject: [THIN] NTFS permissions Sorry for the off subject post but this is a little Citrix related and I'm sure someone here knows the answer. I have many types of users connecting to my Citrix farm. Some receive the full desktop some only receive published applications depending on their needs. The published desktop is extremely locked down and only provides the programs they need. Within the desktop the programs are provided by a redirected start menu. I am using NTFS permissions to control what a user can access on the start menu. My problem is if I have two applications (or more) within a single folder on the start menu and the user only has NTFS permissions to access one he can still see both. The application that he does not have access to shows up but he cannot run the application. Is there anyway using NTFS permissions to keep the icon he does not have access to from showing up? If I recall correctly this is kind of a NTFS permissions problem. Within Novell if you don't have access to a file you don't see it but within Windows you can still see the file. I've enclosed a small photo so you can see the actual problem. Thanks very much for your help!! Matthew Shrewsbury, MCSE+Internet MCSE 2000 CCA Network Administrator Gallai'r e-bost yma gynnwys gwybodaeth gyfrinachol a/neu ddeunydd hawlfraint. Os ydych chi'n meddwl eich bod wedi derbyn yr e-bost yma drwy gamgymeriad rydym yn ymddiheuro am hyn; peidiwch os gwelwch yn dda â datgelu, anfon ymlaen, printio, copïo na dosbarthu gwybodaeth yn yr e-bost yma na gweithredu mewn unrhyw fodd drwy ddibynnu ar ei gynnwys: gwaherddir gwneud hynny'n gyfan gwbl a gallai fod yn anghyfreithlon. Rhowch wybod i'r anfonwr fod y neges yma wedi mynd ar goll cyn ei dileu. Mae unrhyw safbwynt neu farn a gyflwynir yn eiddo i'r awdur ac nid ydynt o anghenraid yn cynrychioli safbwynt neu farn Ymddiriedolaeth GIG Gogledd Orllewin Cymru. Gallai cynnwys yr e-bost yma gael ei ddatgelu i'r cyhoedd o dan Gôd Bod yn Agored y GIG neu Ddeddf Rhyddid Gwybodaeth 2000. Nid oes modd gwarantu cyfrinachedd y neges ac unrhyw ateb. Bydd y neges yma ac unrhyw ffeiliau cysylltiedig wedi cael eu gwirio gan feddalwedd canfod firws cyn eu trosglwyddo. Ond rhaid i'r sawl sy'n derbyn wirio rhag firws ei hun cyn agor unrhyw ymgysylltiad. Nid yw'r Ymddiriedolaeth yn derbyn unrhyw gyfrifoldeb am unrhyw golled neu niwed a allai gael ei achosi gan firws meddalwedd. This e-mail may contain confidential information and/or copyright material. If you believe that you have received this e-mail in error please accept our apologies; please do not disclose, forward, print, copy or distribute information in this e-mail or take any action in reliance on its contents: to do so is strictly prohibited and may be unlawful. Please inform the sender that this message has gone astray before deleting it. Any views or opinions presented are to be understood as those of the author and do not necessarily represent those of the North West Wales NHS Trust. The contents of this e-mail may be subject to public disclosure under the NHS Code of Openness or the Freedom of Information Act 2000. The confidentiality of the message and any reply cannot be guaranteed. This message and any attached files will have been checked with virus detection software before transmission. However, recipients must carry out their own virus checks before opening any attachment. The Trust accepts no liability for any loss or damage, which may be caused by software viruses.