We help IT Professionals succeed at work.
Get Started

Powershell: Adding Special Permissions to ACL of an OU using a PS1 script

1,475 Views
Last Modified: 2013-11-29
I've created a Powershell Script to create an OU and multiple sub OUs and SG Groups, I'm using ADSI to do this and it works fine.

However I'm not sure how to go about adding special permissions to the ACL of the OU for a SG, eg Allow Create / Delete Computer Objects, Allow Full Control Descendant Computer Objects for a security group called ABCD

I've tried using GetAccessRules to read the security perms (so I can use SetAccessRule)but the info GetAccessRules returns doesn't make enough sense for me to use it.

Can someone provide me with some code examples of how I should go about this.

I'm currently doing this on Windows 2008 (powershell 1.0., no QAD, but I'm prepared to 'upgrade' if need be)
Comment
Watch Question
Commented:
This problem has been solved!
Unlock 1 Answer and 1 Comment.
See Answer
Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

  • Troubleshooting
  • Research
  • Professional Opinions
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE