NTFS Permissions Auditor provides the following filter fields and their operations:
| Field name | Description | Available operations |
|---|---|---|
| Basic permissions | The basic permissions are created by combining special permissions in logical groups. Folder permissions include Full Control, Modify, Read & Execute, List Folder Contents, Read and Write | Contains Does not contain |
| Advanced permissions | Advanced permission allows You to assign special permissions individually. Advanced permissions include Traverse Folder/Execute File, List Folder/Read Data, Read Attributes, Read Extended Attributes, Create Files/Write Data, Create Folders/Append Data, Write Attributes, Write Extended Attributes, Delete Subfolders and Files, Delete, Read Permissions, Change Permissions, Take Ownership | Contains Does not contain |
| Permission type | Allow or deny permissions. | Is equal to Is not equal to |
| Permission is inherited | Is permission explicit or inherited. Inherited permissions are those who are propagated to a child object from a parent object. | Is equal to Is not equal to |
| Directory inherits permissions | Is directory permissions inheritance enabled or disabled. | Is equal to Is not equal to |
| Domain name (NetBIOS) | Permissions user, group or computer domain NetBIOS name. | Is equal to Is not equal to Contains Does not contain Begins with Does not begin with Ends with Does not end with Is empty Not empty |
| Domain name (DNS) | Permissions user, group or computer domain name. | Is equal to Is not equal to Contains Does not contain Begins with Does not begin with Ends with Does not end with Is empty Not empty |
| Domain SID | Permissions user, group or computer domain SID. | Is equal to Is not equal to Contains Does not contain Begins with Does not begin with Ends with Does not end with Is empty Not empty |
| Group is empty | If permission is set to group then this field indicates that group has no members. | Is equal to Is not equal to |
| Permissions are identical to parent directory | Compare if permissions are identical to parent directory. | Is equal to Is not equal to |
| Cannot find account details | Cannot find any information for this security principal by its SID. | Is equal to Is not equal to |
| Applies to | Permission scope. | Is equal to Is not equal to |
| Directory all permissions | List of all available directory permissions. Useful, if You want to find, if anybody have particular permissions on this folder. For example, if anybody have delete permissions on finance folder. | Contains Does not contain |
| Account name | Account name. | Is equal to Is not equal to Contains Does not contain Begins with Does not begin with Ends with Does not end with Is empty Not empty |
| Account SID | Account Security Identifier (SID). | Is equal to Is not equal to Contains Does not contain Begins with Does not begin with Ends with Does not end with Is empty Not empty |
| Account disabled | Is user, computer or group disabled. | Is equal to Is not equal to |
| Folder owner | Folder owners name. | Is equal to Is not equal to Contains Does not contain Begins with Does not begin with Ends with Does not end with Is empty Not empty |
| Manager | Accounts manager. | Is equal to Is not equal to Contains Does not contain Begins with Does not begin with Ends with Does not end with Is empty Not empty |
| Department | Accounts department. Useful, if You want to find, witch permissions and folders particular department can access to. | Is equal to Is not equal to Contains Does not contain Begins with Does not begin with Ends with Does not end with Is empty Not empty |
| Job title | Accounts job title. | Is equal to Is not equal to Contains Does not contain Begins with Does not begin with Ends with Does not end with Is empty Not empty |
| Account type | Security principal account type. | Is equal to Is not equal to |