Hi,
This can’t be achieved with the sharing function itself. When a folder is shared, then users have access to all the files and sub- folders.
What you can do however is to use file access control.
- Create a user group “CFO” and add the CFO user to that group
- go to Server Settings -> Workflow and create a new tag CFO
- go to Server Settings -> file access control and create a new rule “CFO restricted access” with Rules:
file system tag – is applied – CFO
user group membership – is not member of – CFO - go to the shared sub- folder which should only be accessed by the CFO and apply the tag “CFO”