Question regarding Permission Inheritance - I have SP2007 with multiple sites, subsites, and document libraries that have been set to not inherit permissions from the parent. Each having been set with specific users and/or group access. The problem is that users who should not be able to access those items (any domain users for example) are still able to do so. I do not have anonymous access enabled on these items. Is the behavior below correct or did something change. When I run the "Check effective permissions" on one of the affected document libraries for "Domain\Domain users" the report generated indicates the following: Permissions for Domain\domain users (Domain\domain users) No permissions. The following factors also effect the level of access for Domain\domain users (Domain\domain users) Allow or Deny Operation Description Allow View Items View items in lists, documents in document libraries, and view Web discussion comments. Allow View Pages View pages in a Web site. Allow View Versions View past versions of a list item or document. Allow View Application Pages View forms, views, and application pages. Enumerate lists. Allow Open Allows users to open a Web site, list, or folder in order to access items inside that container. Anonymous access Anonymous access is not enabled on this scope

Hi, Please go to Central Administration site>application management>policy for web application to check if the user has any permission in the web application policy. Let me know the result.Xue-Mei Chang