Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 317
  • Last Modified:

Set permissions by file name/Inherit Ownership MS Server 2008

Kind of a two part question here. Need to find a way to :

1.) set permissions on folders based on folder name. Scenario - I have hundreds of site based folders, and inside of each one of these folders are four folders, each with the same name

Example

Sites -

   -Site 1
        -Folder A
        -Folder B
        -Folder C
   -Site 2
        -Folder A
        -Folder B
        -Folder C
 and so on.

   I'm trying to find a way to set a permission on every folder under 'sites' named 'Folder A'. I've tried using an XCacl VbScript, but it errors out. Wondering if I am running into ownership issues, as folders are created by different people, which leads to

2) Does anyone know of a way to do a bulk change of folder ownership, so I can set ownership on a parent folder and have all child folders inherit the ownership? I know the chown command works for linux, but havent been able to find anything for MS.
0
MRowan75
Asked:
MRowan75
  • 4
  • 2
1 Solution
 
George KhairallahCTOCommented:
0
 
George KhairallahCTOCommented:
This is a quick script that I usually use to fix permissions on user folders (it's written in Kix, can be easily converted to VB). You would have to modify it to fit your folder structure, but it should put you on the right track.

Break ON
; 
; Change this to the base path where your directory is. so, in this case, the user folders would be here: d:\students\%USERNAME%
Global $BasePath $BasePath = 'D:\Students' 
; Replace this with your NetBIOS domain name. (This is used for domain\user notation) 
Global $Domain $Domain = 'YOUROMDAIN'
;-------------------------------------------------------------------

Dim $fh $fh = FreeFileHandle
$ = Open($fh, @SCRIPTDIR + "\users.txt")

$UserName = ReadLine($fh)
Do
	Trim($UserName)
	Shell '%COMSPEC% /c icacls ' + $BasePath + '\' + $UserName + ' /t /c /l /grant ' + $Domain + '\' + $UserName + ':(OI)(CI)F'
	Shell '%COMSPEC% /c icacls ' + $BasePath + '\' + $UserName + ' /setowner ' + $Domain + '\' + $UserName
	$UserName = ReadLine($fh)
Until @ERROR = -1
$ = Close($fh)

Open in new window

0
 
MRowan75Author Commented:
Thanks. I was able to use icacls to set ownership on all files. Still dealing with the issue of trying to set permissions on all folders named 'settings', as opposed to drilling down to each individual folder. For example,

C:\Sites\Site1\Settings
C:\Sites\Site2\Settings
C:\Sites\Site3\Settings ect.

I have about 700 'site#' folders, and need to edit permissions on every "site#\settings folder". Is there a command or tool that will find all folders named 'settings' within the Sites top level to allow me to do this without manually typing the command 700 times? I'm getting the impression there isn't and I have a long day/week of typing ahead of me...
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
George KhairallahCTOCommented:
are the Site# all under C:\Sites?
You just want to be able to go through the folder C:\Sites\SiteX through C:\Sites\SitesY and change the permissions on the "Settings" folder in each of them?
0
 
MRowan75Author Commented:
Yes, that is what I am looking for.
0
 
George KhairallahCTOCommented:
So I'm not exactly sure of what you're looking to do, but I changed the code so that you can iterate through 700 Site folders, and you can then change whatever you need on each of them. You can run the script as is to see what directories will be targeted. (I commented out the icacls part).

BREAK ON
for $i = 1 to 700
;
; Change this to the base path where your directory is. so, in this case, the user folders would be here: d:\students\%USERNAME%
Global $BasePath $BasePath = 'C:\Site' + $i  
; Replace this with your NetBIOS domain name. (This is used for domain\user notation)
Global $Domain $Domain = 'YOUROMDAIN'
;-------------------------------------------------------------------

;Dim $fh $fh = FreeFileHandle
;$ = Open($fh, @SCRIPTDIR + "\users.txt")
;$UserName = ReadLine($fh)
    ? "DEBUG: Processing: " + $BasePath + '\Settings'
    Trim($UserName)
    ;Shell '%COMSPEC% /c icacls ' + $BasePath + '\Settings' + ' /t /c /l /grant ' + $Domain + '\' + $UserName + ':(OI)(CI)F'
    ;Shell '%COMSPEC% /c icacls ' + $BasePath + '\' + $UserName + ' /setowner ' + $Domain + '\' + $UserName
    $UserName = ReadLine($fh)
;$ = Close($fh)
Next 

Open in new window

0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now