i have a folder on my hard drive that contains very important files. therefore, i set it up that only an administrator can create and edit files there. these files are of only one type, so i only use only one application to create and modify these files. but i am afraid of running this program with admin rights. is there a way to set up, so that this particular application can edit all files in that particular location, and only THAT location, without running it as admin? in short: i want to give permissions to applications the same way you give permissions to users

Hi, As I tested, you can try the following: 1. Create a dedicated administrator account which has password. 2. Logon with this account and take ownership on the folder. 1) Right-click on the folder and select properties. 2) Switch to the Security Tab and click Advanced. 3) In Advanced Security Settings for Windows, switch to Owner tab and ensure that the Current owner is the account created just now. 4) Switch to Permissions tab, click Change Permissions, in the new-opened window, unselect Include inheritable permissions from this objects parent and click Remove. 5) Then, in the same Window, click Add and input the account created just now, press OK. In the new-opened window, check Full control under Allow row and click OK. 6) Continuously click OK to apply the settings. 7) Then, please switch to another user account to see if you can enter the folder. If not, it means the operations above are successful. 3. Logon to another account and use RunAS to run the application with the account you created. 1) Download the ShellRunas and install it. ShellRunas 2) Then, keep holding Shift key on your keyboard and right-click the application you use the modify the files. In the menu, please select Run as different user and in the Windows Security prompt, input the User name and Password of the account you created and click OK. 3) In the application, you can click Open to go to the folder we have taken ownership for the account you created and you can also create a new file and save it to that location. Please just try the method and let us know how it works. Hope this helps. Thanks.Nicholas Li - MSFT