Solved

Powershell NTFSsecurity () parentheses issues

Posted on 2014-12-18
7
539 Views
Last Modified: 2015-01-10
Hi,

I'm using the NTFSsecurity module ( https://gallery.technet.microsoft.com/scriptcenter/1abd77a5-9c0b-4a2b-acef-90dbb2b84e85) to set permissions to a lot of folders.
The security groupnames at the company i'm working at contain parentheses like: "DLFS-SomeFolder (read)"
When i'm running the script, it gives me this error:

Add-NTFSAccess : Cannot bind parameter 'Account'. Cannot convert value "contoso.lan\DLFS-SomeFolder (read)" to type "Security2.IdentityReference2". Error: "Some or all identity references could not be translated."
At C:\Temp\Set_Permissions\SetPermissions.ps1:29 char:35

Is there a way to work around this ?

The script works fine with groupname that do not contain parentheses.

Here is the script:
#$ErrorActionPreference = "SilentlyContinue"
Import-Module ActiveDirectory
import-module ntfssecurity

#Read Users and folders from CSV
import-CSV "C:\Temp\Set_Permissions\Permissions.csv" -Delimiter ';' | foreach{

$Group = ("contoso.lan\" + $_.Groups)
$Folder = $_.Folder
$Permissions = $_.Permissions
$Folderexists = Test-Path $Folder

If ($_.inherit -eq "No"){
$Inherit = "ThisFolderOnly"
} else {
$Inherit = "ThisFolderSubfoldersAndFiles"
}

#Test if path exists
If ($Folderexists -eq $False){
    Write-Host "Folder: $Folder does not exsist." -ForeGroundColor Red
	} else { 
        Write-host "Folder:" $Folder "is available. Permissions for:" $Group "are set " -ForeGroundColor Cyan
		#Get-Item $folder | Add-Ace -Account $Group -AccessRights $Permissions -AppliesTo $Inherit
		Add-NTFSAccess $Folder -Account $Group -AccessRights $Permissions -AppliesTo $Inherit 
    } 

write-host "-------------------------------------------------------------------------" -ForeGroundColor Yellow
}

Open in new window


Thanks in advance !
0
Comment
Question by:Loyall
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
7 Comments
 
LVL 19

Expert Comment

by:Raheman M. Abdul
ID: 40506897
Try the same code in Powershell v3 or higher.
what  version you are using ?
0
 
LVL 2

Author Comment

by:Loyall
ID: 40507017
Hi, Raheman Mohammed Abdul

Major  Minor  Build  Revision
-----  -----  -----  --------
3      0      -1     -1
0
 
LVL 70

Expert Comment

by:Qlemo
ID: 40507185
Are you using the most recent NTFSSecurity module? The discussion thread tells about some similar issues with german umlauts, which are "special" characters as the parens and stuff ...
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 2

Author Comment

by:Loyall
ID: 40512431
Hi, Qlemo

I downloaded the version that is currently available on Technet and https://ntfssecurity.codeplex.com/
0
 
LVL 2

Accepted Solution

by:
Loyall earned 0 total points
ID: 40532016
I contacted the author of the module and he updated the module the same day.
So, now it works fine.
0
 
LVL 70

Expert Comment

by:Qlemo
ID: 40532030
I should have suggested that. I have been positive about it being an issue with the module itself ...
0
 
LVL 2

Author Closing Comment

by:Loyall
ID: 40541768
The issue was in the module was a limitation of the module itself. I emailed the author and he edited the module so it can handle parenthesis now.
0

Featured Post

On Demand Webinar - Networking for the Cloud Era

This webinar discusses:
-Common barriers companies experience when moving to the cloud
-How SD-WAN changes the way we look at networks
-Best practices customers should employ moving forward with cloud migration
-What happens behind the scenes of SteelConnect’s one-click button

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Utilizing an array to gracefully append to a list of EmailAddresses
Recently we ran in to an issue while running some SQL jobs where we were trying to process the cubes.  We got an error saying failure stating 'NT SERVICE\SQLSERVERAGENT does not have access to Analysis Services. So this is a way to automate that wit…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

615 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question