?
Solved

Set permissions by file name/Inherit Ownership MS Server 2008

Posted on 2012-04-10
6
Medium Priority
?
312 Views
Last Modified: 2012-08-25
Kind of a two part question here. Need to find a way to :

1.) set permissions on folders based on folder name. Scenario - I have hundreds of site based folders, and inside of each one of these folders are four folders, each with the same name

Example

Sites -

   -Site 1
        -Folder A
        -Folder B
        -Folder C
   -Site 2
        -Folder A
        -Folder B
        -Folder C
 and so on.

   I'm trying to find a way to set a permission on every folder under 'sites' named 'Folder A'. I've tried using an XCacl VbScript, but it errors out. Wondering if I am running into ownership issues, as folders are created by different people, which leads to

2) Does anyone know of a way to do a bulk change of folder ownership, so I can set ownership on a parent folder and have all child folders inherit the ownership? I know the chown command works for linux, but havent been able to find anything for MS.
0
Comment
Question by:MRowan75
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 10

Expert Comment

by:George Khairallah
ID: 37829184
0
 
LVL 10

Expert Comment

by:George Khairallah
ID: 37829196
This is a quick script that I usually use to fix permissions on user folders (it's written in Kix, can be easily converted to VB). You would have to modify it to fit your folder structure, but it should put you on the right track.

Break ON
; 
; Change this to the base path where your directory is. so, in this case, the user folders would be here: d:\students\%USERNAME%
Global $BasePath $BasePath = 'D:\Students' 
; Replace this with your NetBIOS domain name. (This is used for domain\user notation) 
Global $Domain $Domain = 'YOUROMDAIN'
;-------------------------------------------------------------------

Dim $fh $fh = FreeFileHandle
$ = Open($fh, @SCRIPTDIR + "\users.txt")

$UserName = ReadLine($fh)
Do
	Trim($UserName)
	Shell '%COMSPEC% /c icacls ' + $BasePath + '\' + $UserName + ' /t /c /l /grant ' + $Domain + '\' + $UserName + ':(OI)(CI)F'
	Shell '%COMSPEC% /c icacls ' + $BasePath + '\' + $UserName + ' /setowner ' + $Domain + '\' + $UserName
	$UserName = ReadLine($fh)
Until @ERROR = -1
$ = Close($fh)

Open in new window

0
 
LVL 1

Author Comment

by:MRowan75
ID: 37833719
Thanks. I was able to use icacls to set ownership on all files. Still dealing with the issue of trying to set permissions on all folders named 'settings', as opposed to drilling down to each individual folder. For example,

C:\Sites\Site1\Settings
C:\Sites\Site2\Settings
C:\Sites\Site3\Settings ect.

I have about 700 'site#' folders, and need to edit permissions on every "site#\settings folder". Is there a command or tool that will find all folders named 'settings' within the Sites top level to allow me to do this without manually typing the command 700 times? I'm getting the impression there isn't and I have a long day/week of typing ahead of me...
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
LVL 10

Expert Comment

by:George Khairallah
ID: 37833833
are the Site# all under C:\Sites?
You just want to be able to go through the folder C:\Sites\SiteX through C:\Sites\SitesY and change the permissions on the "Settings" folder in each of them?
0
 
LVL 1

Author Comment

by:MRowan75
ID: 37833848
Yes, that is what I am looking for.
0
 
LVL 10

Accepted Solution

by:
George Khairallah earned 1500 total points
ID: 37833921
So I'm not exactly sure of what you're looking to do, but I changed the code so that you can iterate through 700 Site folders, and you can then change whatever you need on each of them. You can run the script as is to see what directories will be targeted. (I commented out the icacls part).

BREAK ON
for $i = 1 to 700
;
; Change this to the base path where your directory is. so, in this case, the user folders would be here: d:\students\%USERNAME%
Global $BasePath $BasePath = 'C:\Site' + $i  
; Replace this with your NetBIOS domain name. (This is used for domain\user notation)
Global $Domain $Domain = 'YOUROMDAIN'
;-------------------------------------------------------------------

;Dim $fh $fh = FreeFileHandle
;$ = Open($fh, @SCRIPTDIR + "\users.txt")
;$UserName = ReadLine($fh)
    ? "DEBUG: Processing: " + $BasePath + '\Settings'
    Trim($UserName)
    ;Shell '%COMSPEC% /c icacls ' + $BasePath + '\Settings' + ' /t /c /l /grant ' + $Domain + '\' + $UserName + ':(OI)(CI)F'
    ;Shell '%COMSPEC% /c icacls ' + $BasePath + '\' + $UserName + ' /setowner ' + $Domain + '\' + $UserName
    $UserName = ReadLine($fh)
;$ = Close($fh)
Next 

Open in new window

0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
Resolving an irritating Remote Desktop connection that stops your saved credentials from being used.
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…
Suggested Courses

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question