I'm troubleshooting bat files from the IT guy who just retired.
It uses XCACLS.EXE to set permissions to folders and subfolders.
It seems not to be working and some preliminary research suggests that tool is old-school and not meant for 2012/2016.
The old bat file contains statements like these:
xcacls.exe %1\01_DOCS\01_CONFID /T /G ADMN_PH:C /Y
xcacls.exe %1\01_DOCS\01_CONFID /T /E /G PM_GROUP:C /Y
xcacls.exe %1\01_DOCS\01_CONFID /T /E /G SVCS_PH:F /Y
I see references to: icacls.exe but wasn't sure it there's even a newer technique / tool that should be used.
For icacls.exe, I see references to SID's but we only want to apply permissions to security groups.
I see that icalcls.exe is built into 2016 so I guess that's the best.