get-acl 'Inherited From'

ertuu85 · June 1, 2017, 2:11pm

I am trying to find for each ACE how to determine where it’s permissions are inherited from. I cant seem to find the actual folder it is inherited from in get-acl…

Here is a pic to better illustrate what i’m talking about…Image

max-kozlov · June 2, 2017, 9:09am

You need to walk up the tree and find all not inherited permissions.
and then analyze it
something like that

function Get-NotInheritedACL($Path) {
	Get-Acl -Path $path |
	 Select-Object -ExpandProperty Access |
	 Where-Object { -Not $_.IsInherited } |
	 Foreach-Object {
		[PSCustomObject]@{
			Path = $Path
			Access = $_
		}
	}
	$parent = Split-Path $Path
	if ($parent) {
		Get-NotInheritedACL $parent
	}
}

Get-NotInheritedACL 'C:\Program Files\Common Files\Microsoft Shared\'

Topic		Replies	Views
Can´t get inheritfrom folder name PowerShell Help	7	140	November 29, 2017
Identifying NTFS Folder Permission Differences PowerShell Help	7	212	July 13, 2015
getting the 'Inherit From' field via powershell PowerShell Help	2	177	December 11, 2018
Need help with Get-Acl PowerShell Help	0	149	August 6, 2020
NTFS Permissions on Non-Inherited folders PowerShell Help	5	1745	August 31, 2021

get-acl 'Inherited From'

Related Topics