Link to home
Create AccountLog in
Avatar of REIUSA
REIUSAFlag for United States of America

asked on

icacls to assign permissions to ALL subfolders, even folders not inheriting access?

I am using the following command to add a group to the ACL for very large directories. The problem I am having is some of the folders have disabled access inheritance and have explicit access assigned and this group doesn't get added to that folder with the following command.

icacls.exe U:\*.* /grant DOMAIN\GroupName:(OI)(CI)F /C /T

Am I missing a switch or something? Is there a way to force it to add the group to all folders regardless if they are inheriting access? Or is there something else that is preventing the group from being applied to the folder?

Thanks,
ASKER CERTIFIED SOLUTION
Avatar of Ben Personick (Previously QCubed)
Ben Personick (Previously QCubed)
Flag of United States of America image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Avatar of REIUSA

ASKER

Thanks, that looks like it is working.

Something else I noticed is, if I try to apply it to c:\F1\F2\* the group doesn't get added to F2. is there a way to make it apply to F2 also? there are many other sub folders under F1 that I do not want to apply the group to, just F2 and everything below it.
Try doing one of these two variations for the path


“C:\F1\F2“

“C:\F1\F2\“

I think option 1 will work
Avatar of REIUSA

ASKER

Cool, thanks. I will try that.
You're welcome glad I could help =)