Community technical support mailing list was retired 2010 and replaced with a professional technical support team. For assistance please contact: Pre-sales Technical support via email to sales@march-hare.com.
Here's my configuration: CVS repository stored in - c:\projects\cvs CVSNT 2.5.03 2382 build installed in - c:\program files\cvsnt The CVSNT service is set to run under an administrator account and in the service log on page it has the Local System account selected. Both the system account and the administrator have been added to the local policy setting "Impersonate a client after authentication". I have pserver enabled, and sspi with negotiate support, kerberos, and ntlm enabled. There are three users, let's call them Tom, Dick, and Harry. They are part of the group NewGroup. - c:\projects (NewGroup only has List Folder Contents enabled). -cvs (Same rights as c:\projects) + CVSROOT (NewGroup has full rights) + Rep1 (NewGroup & individual users have all rights revoked) + Rep2 (NewGroup & individual users have all rights granted) I've also tried setting SystemAuth to yes & no. The problem is that Tom, Dick, or Harry can login and checkout Rep1 when they should only be able to check out Rep2 (or am I not understanding how impersonation works?) The same thing happens for both pserver & sspi. I've also tried removing Tom, Dick, and Harry from NewGroup, but that still doesn't change anything - they can still checkout Rep1. Any help would be greatly appreciated. Thanks