Permissions
            Permissions define the type of access that is granted to a user or group for an object or object property. For
            example, the Finance group can be granted Read and Write permissions for a file named Payroll.dat.

            By using the access control user interface, you can set NTFS permissions for objects such as files, Active Di-
            rectory objects, registry objects, or system objects such as processes. Permissions can be granted to any user,
            group, or computer. It's a good practice to assign permissions to groups because it improves system perfor-
            mance when verifying access to an object.
            For any object, you can grant permissions to:

                ·   Groups, users, and other objects with security identifiers in the domain.
                ·   Groups and users in that domain and any trusted domains.

                ·   Local groups and users on the computer where the object resides.
            The permissions attached to an object depend on the type of object. For example, the permissions that can be
            attached to a file are different from those that can be attached to a registry key. Some permissions, however,
            are common to most types of objects. These common permissions are:
                ·   Read

                ·   Modify