Im stuck trying to set permissions on a lot of folders. I have about 250 top level folders, which multiple files and folders below. In trying to explain this i will use the following structure:
- Shares
- AAA01
- Folder 1 (Broken Inheritance)
- File_01.txt (Permissions inherited from Folder 1)
- File_02.txt (Permissions inherited from Folder 1)
- File_03.txt (Permissions inherited from Folder 1)
- Folder 2 (Broken Inheritance)
- File_01.txt (Permissions inherited from Folder 2)
- File_02.txt (Permissions inherited from Folder 2)
- File_03.txt (Permissions inherited from Folder 2)
- Folder 3
(Broken Inheritance)
- File_01.txt (Permissions inherited from Folder 3)
- File_02.txt (Permissions inherited from Folder 3)
- File_03.txt (Permissions inherited from Folder 3)
- Test_01.txt (Permissions inherited from AAA01)
- Test_03.txt (Permissions inherited from AAA01)
- Test_02.txt (Permissions inherited from AAA01)
When i try and set the permissions for lets say the following group "DOMAIN\User", the top level folder "AAA01" and the files below it take the new permissions, however, that usergroup i still want added to the folders with the broken inheritance (Folder 1, Folder 2 and Folder 3)
This is the powershell i was playing around with:
$user = "DOMAIN\USER" $dfsfolder = "C:\Shares" $acl = get-acl -path $dfsfolder $new=$user,”FullControl”,”ContainerInherit,ObjectInherit”,”None”,”Allow” $accessRule = new-object System.Security.AccessControl.FileSystemAccessRule $new $acl.AddAccessRule($accessRule) $acl | Set-Acl $dfsfolder
How can i do this with powershell?
