Powershell: Adding Special Permissions to ACL of an OU using a PS1 script

I've created a Powershell Script to create an OU and multiple sub OUs and SG Groups, I'm using ADSI to do this and it works fine.

However I'm not sure how to go about adding special permissions to the ACL of the OU for a SG, eg Allow Create / Delete Computer Objects, Allow Full Control Descendant Computer Objects for a security group called ABCD

I've tried using GetAccessRules to read the security perms (so I can use SetAccessRule)but the info GetAccessRules returns doesn't make enough sense for me to use it.

Can someone provide me with some code examples of how I should go about this.

I'm currently doing this on Windows 2008 (powershell 1.0., no QAD, but I'm prepared to 'upgrade' if need be)
navitaireAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

jwarnkenCommented:
I do not have any sample code for you but I would recommend the AD cmdlets  from Quest. http://www.quest.com/powershell/activeroles-server.aspx
As an added bonus they are free.
You can read some example uses such as reading permissions at http://dmitrysotnikov.wordpress.com/2008/05/13/read-active-directory-permissions/
There is a reference wiki at http://wiki.powergui.org/index.php/QAD_cmdlets_reference

Personally I use the Quest PowerGui tool to write my powershell code and find it quite useful.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows OS

From novice to tech pro — start learning today.