Exam 220-1002 topic 1 question 190 discussion

Deny. ""Deny" permissions generally take precedence over "allow" permissions." (https://www.ntfs.com/ntfs-permissions-precedence.htm) check out permissions precedence "An explicit "allow" permission can take precedence over an inherited "deny" permission." The hierarchy of precedence for the permissions can be summarized as follows, with the higher precedence permissions listed at the top of the list: Explicit Deny Explicit Allow Inherited Deny Inherited Allow

Shouldn't DENY override other settings?

A. Deny

Wait should be the answer Deny?

This question is poorly worded

allow vs deny: deny takes precedence over allow deny permission always override all, regardless of whether the permissions are inherited or explicitly assigned to a file

The most restrictive permission is the DENY. C (Write) is wrong. Either the question is being asked incorrectly or the answer provided is clearly wrong. Messer, Myers, WGU, all support the theory of most restrictive wins. Even if this was a network share as well and there was a conflict between allow and deny, deny wins. Review Messer's 2.6 video here for clarification: https://www.professormesser.com/free-a-plus-training/220-1002/windows-security-settings-3/

Only A makes any sense. The other 3 are completely independent of each other. Don't believe me? Test it out, it is not hard to do.

Allow or Deny is not an NTFS permission, its more like a ...yes or no to the permissions. NTFS permissions are: Full Control Modify Read & Execute Read Write Depending on the Windows, some other permissions may be included. You can verify this by checking your Local Disk>Properties

The answer is C because it chooses the most restrictive permission