asked on
I am creating AD home folders. Our users get permsissions to "modify, read & execute, list folder contents, read, write" Can you help me modify my script so that it gets these same permssions. When I apply the script the user gets full control and it appears as special permissions. When I change fullcontrol to modify it still comes up as special permissions. When I apply the modify option in the script and I explore special permissions the user does not have permission to delete files or sub folders. What should I do to apply the permissions that users get when I create the account and homefolder using the ADUC from RSAT tools.
New-Item -type directory -path "\\127.0.0.1\Share\$($ADUser['SamAccountName'])"
$Acl = Get-Acl "\\127.0.0.1\Share\$($ADUser['SamAccountName'])"
$Ar = New-Object system.security.accesscontrol.filesystemaccessrule("$($FirstName[0])$($LastName)","FullControl","Allow")
$Acl.SetAccessRule($Ar)
Set-Acl "\\127.0.0.1\Share\$($ADUser['SamAccountName'])" $Acl
Learn from the best
Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.
Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 1 Comment.
Try for 7 days”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.
Our community of experts have been thoroughly vetted for their expertise and industry experience.