These names are not really that hard to read, are they? If you want a
non-admin user (i.e., WORLD) to have full access, then there had better be
a WORLD name in the SDDL. If you want everyone to have full access, you would
If you want to limit restricted users to read-only, then you would want
Tim Roberts, email@example.com
Providenza & Boekelheide, Inc.