What is the simplest way to determine if there is any discrepancy in a sub folders acl?
Say, I want E:\UserData\TomJones folder to have an ACL containing only system, admins, and TomJones account (this being the only explicitly defined entry).
But a child folder within that structure actually has an explicitly defined ACE for the group Marketing.
How can I determine that all child folders do not follow the rules for the parent folder?
I'm thinking I'll have to perform some recursion and test each folder's security within TomJones folder, but I hope not...any suggestions