Hello all,
for the file server I'm trying to create a PS script for automatic home folder creation.
First thing I want to do is disable the parent folder rights to be inherited into this user folder.
In the GUI this is just 1 checkbox you need to clear :-)
Then I want to remove the "Authenticaed Users" from the ACL and add the psecified user as "Modify, Synchronise"
This is the before:
PS C:\Users\admin> Get- Acl '\\cliffjumper\d$\Users\User01' | fl
Path : Microsoft.PowerShell.Core\FileSystem::\\cliffjumper\d$\Users\User01 Owner : BUILTIN\Administrators Group : DOMAINNAME\Domain Admins Access : DOMAINNAME\Domain Admins Allow FullControl NT AUTHORITY\Authenticated Users Allow Read, Synchronize NT AUTHORITY\SYSTEM Allow FullControl DOMAINNAME\GL_FileServerAdmins Allow FullControl BUILTIN\Administrators Allow FullControl Audit : Sddl : O:BAG:DAD:AI(A;OICIID;FA;;;DA)(A;OICIID;FR;;;AU)(A;OICIID;FA;;;SY)(A;OICIID;FA;;;S-µ;FA;;;BA)
This is how it should be:
PS C:\Users\admin> Get- Acl '\\cliffjumper\d$\Users\User01' | fl Path : Microsoft.PowerShell.Core\FileSystem::\\cliffjumper\d$\Users\User01 Owner : BUILTIN\Administrators Group : DOMAINNAME\Domain Admins Access : NT AUTHORITY\SYSTEM Allow FullControl BUILTIN\Administrators Allow FullControl DOMAINNAME\Domain Admins Allow FullControl DOMAINNAME\User01 Allow Modify, Synchronize DOMAINNAME\GL_FileServerAdmins Allow FullControl Audit : Sddl : O:BAG:DAD:PAI(A;OICI;FA;;;SY)(A;OICI;FA;;;BA)(A;OICI;FA;;;DA)(A;OICI;0x1301bf;;;S- 30789)
Any of you guys have some ideas for me on how to get this done?
Thnx allready!
Tim