A user has Read Only security rights to a folder. This folder holds Production data for an application that the user is running. The user is limited to Read Only rights to the folder because the Company does not want the user to inadvertently edit or delete any Production data (fair enough). However, when running the application, the user has a legitimate need to be able to perform actions to write to the same folder (such as running a report that would be saved to this folder), but since the user only has Read Only security rights, the report that is run from the application cannot be written and saved to that folder.
We need the user to be able to write to the folder only from a specific application.
Is there any way to allow Full permission or Write access to a specific folder if and only if the user is writing from a specific application?
Additional details: we are running Windows server 2008, Windows 7 workstation, and connecting to the software application via Citrix.