Permissions granted on the server level by an administrator prevent access to specific areas of the network by user id. This is the same userid that you can display by issuing ? sys(0) from the command window. This affects not only access through VFP but also access via explorer or any other viewer.

However, you could always build a front end login screen to assign "rights" to folder / files. Again, having the user table reside in an area that only an "administrator" can access.

HTH