• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 7174
  • Last Modified:

Need a PowerShell script to list shares and share permissions residing on a remote server

I'm a VERY new user to powerShell and would like to get a listing of the shares and share permissions on remote servers.  I know the start is "Get-WMIObject Win32_Share -computername myserver" but beyond that I haven't been successful.  What I'm looking for is something like the following:
Sharename
User1 - modify
User2 - readOnly
Domain Admins - full

0
Diannec
Asked:
Diannec
  • 2
1 Solution
 
BSonPoshCommented:
Do you want NTFS permissions or Share permissions?
0
 
DiannecAuthor Commented:
right now I'm looking for Share permissions
0
 
BSonPoshCommented:
Ah... that is quite another beast.

unfortunately, I believe you need to rely on an external app for this one

rmtshare (from NT 4.0 reskit)

This assumes rmtshare is in your path.
$results = rmtshare.exe $share
$results | ?{$_ -match "\w+\\.+\:"}

Open in new window

0
 
sonytechsoftCommented:
I found a webpage describing solution without relying on external tools here:

http://www.highorbit.co.uk/?p=972

Examples:
PS C:\> Get-ShareACL Test
PS C:\> (Get-ShareACL Test).Access


function Get-ShareACL {
  Param(
    [String]$Name = "%",
    [String]$Computer = $Env:ComputerName
  )
 
  $Shares = @() 
  Get-WMIObject Win32_Share `
    -Computer $Computer -Filter "Name LIKE '$Name'" | `
    %{
      $Access = @();
      If ($_.Type -eq 0) {
        $SD = (Get-WMIObject -Class Win32_LogicalShareSecuritySetting `
          -Computer $Computer `
          -Filter "Name='$($_.Name)'").GetSecurityDescriptor().Descriptor
        $SD.DACL | %{
          $Trustee = $_.Trustee.Name
          If ($_.Trustee.Domain -ne $Null) { $Trustee = "$($_.Trustee.Domain)\$Trustee" }
          $Access += New-Object System.Security.AccessControl.FileSystemAccessRule( `
            $Trustee, $_.AccessMask, $_.AceType)
        }
      }
      $Shares += $_ | Select-Object Name, Path, Description, Caption, `
        @{n='Type';e={ Switch ($_.Type) {
          0 { "Disk Drive" }
          1 { "Print Queue" }
          2 { "Device" }
          2147483648 { "Disk Drive Admin" }
          2147483649 { "Print Queue Admin" }
          2147483650 { "Device Admin" }
          2147483651 { "IPC Admin" } }} }, `
        MaximumAllowed, AllowMaximum, Status, InstallDate, `
        @{n='Access';e={ $Access }}
  }
  Return $Shares
}

Open in new window

0

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now