Solved

Retriving a list of permissions based on folder/file

Posted on 2010-11-11
4
309 Views
Last Modified: 2012-05-10
Good morning,
Ive been looking for a while to be able to take a snapshot of one of our server to be able to see what users have access to what files/folders.

I can get a list of all folders and files easily, but does anyone know how I can pass a folder or file into a function and have it return with a list of users/groups and permissions for that folder/file?

Any assistance anyone can provide, would be appriciated.

Thank you
0
Comment
Question by:tonelm54
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 

Expert Comment

by:MK1978
ID: 34110818
The command that allows this from command prompt is "cacls"

So for checking the permissions for a file:

cacls <filename/path>

this should give you the require information.  Maybe you can incorporate this into your code?
0
 
LVL 2

Expert Comment

by:LTCexpert
ID: 34110821
Download the Sysinternals Suite from here.
http://technet.microsoft.com/en-us/sysinternals/bb842062.aspx
There is an exe call AccessEnum which will show you who has access to any directory / Drive ect.

Hope this helps
0
 
LVL 52

Accepted Solution

by:
Carl Tawn earned 500 total points
ID: 34110945
Well, seeing as you seem to be asking for code rather than links to third-party tools, you could try:
' Add these too
' Imports System.IO
' Imports System.Security.Principal
' Imports System.Security.AccessControl

    Public Sub ListDirectorySecurity(ByVal directoryName As String)

        Dim di As New DirectoryInfo(directoryName)
        Dim security As DirectorySecurity = di.GetAccessControl()

        Dim rules As AuthorizationRuleCollection = security.GetAccessRules(True, True, GetType(NTAccount))
        For Each rule As FileSystemAccessRule In rules

            Console.WriteLine(" User: {0}", rule.IdentityReference)
            Console.WriteLine(" Type: {0}", rule.AccessControlType)
            Console.WriteLine(" Rights: {0}", rule.FileSystemRights)
            Console.WriteLine(" Inheritance: {0}", rule.InheritanceFlags)
            Console.WriteLine(" Propagation: {0}", rule.PropagationFlags)
            Console.WriteLine(" Inherited? {0}", rule.IsInherited)
            Console.WriteLine()

        Next

    End Sub

Open in new window

0
 

Author Comment

by:tonelm54
ID: 34118545
Thank you 'carl_tawn', that is exactly what Im looking for.

Ive used your code to also do file security as well, and attached it below, just incase anyone in the future comes across this thread and intrested.

Thank you
Imports System.IO
Imports System.Security.Principal
Imports System.Security.AccessControl



Module Module1

    Sub Main()
        ListDirectorySecurity("u:\Documents")
        ListFileSecurity("U:\Assesment.xls")
    End Sub

    Public Sub ListDirectorySecurity(ByVal directoryName As String)
        Dim di As New DirectoryInfo(directoryName)
        Dim security As DirectorySecurity = di.GetAccessControl()

        Dim rules As AuthorizationRuleCollection = security.GetAccessRules(True, True, GetType(NTAccount))
        For Each rule As FileSystemAccessRule In rules
            Console.WriteLine(" User: {0}", rule.IdentityReference)
            Console.WriteLine(" Type: {0}", rule.AccessControlType)
            Console.WriteLine(" Rights: {0}", rule.FileSystemRights)
            Console.WriteLine(" Inheritance: {0}", rule.InheritanceFlags)
            Console.WriteLine(" Propagation: {0}", rule.PropagationFlags)
            Console.WriteLine(" Inherited? {0}", rule.IsInherited)
            Console.WriteLine()
        Next
    End Sub

    Public Sub ListFileSecurity(ByVal fileName As String)
        Dim di As New FileInfo(fileName)
        Dim security As FileSecurity = di.GetAccessControl()

        Dim rules As AuthorizationRuleCollection = security.GetAccessRules(True, True, GetType(NTAccount))
        For Each rule As FileSystemAccessRule In rules
            Console.WriteLine(" User: {0}", rule.IdentityReference)
            Console.WriteLine(" Type: {0}", rule.AccessControlType)
            Console.WriteLine(" Rights: {0}", rule.FileSystemRights)
            Console.WriteLine(" Inheritance: {0}", rule.InheritanceFlags)
            Console.WriteLine(" Propagation: {0}", rule.PropagationFlags)
            Console.WriteLine(" Inherited? {0}", rule.IsInherited)
            Console.WriteLine()
        Next
    End Sub
End Module

Open in new window

0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This tutorial demonstrates one way to create an application that runs without any Forms but still has a GUI presence via an Icon in the System Tray. The magic lies in Inheriting from the ApplicationContext Class and passing that to Application.Ru…
Creating an analog clock UserControl seems fairly straight forward.  It is, after all, essentially just a circle with several lines in it!  Two common approaches for rendering an analog clock typically involve either manually calculating points with…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question