Removing access permissions

jarek-c · February 9, 2015, 7:59pm

I’m trying to write a script that would remove all access permissions from a particular folder and replace them with a new set of permissions.
To remove all permissions I do

$acl = Get-Acl $folder
foreach($access in $acl.access){
$acl.RemoveAccessRuleAll($access) | Out-Null
}
Set-Acl $folder $acl

however this doesn’t work for some reason. When debugging I’m doing $acl | fl in line 1 and then after Set-Acl and the result is the same as if RemoveAccessRuleAll() never run.
What do I need to modify to get this to work?

brian-sprogo · February 9, 2015, 11:18pm

Could it be that all of your permissions on the folder is inherited ?

You can remove inheritance with

$acl.SetAccessRuleProtection($True, $True)

Info on the method here:

https://msdn.microsoft.com/en-us/library/system.security.accesscontrol.objectsecurity.setaccessruleprotection(v=vs.110).aspx

jarek-c · February 9, 2015, 11:44pm

That was it Many thanks

brian-sprogo · February 10, 2015, 12:35am

You’re welcome

Topic		Replies	Views
Remove ACL Question PowerShell Help	3	259	May 16, 2024
acl.removeaccessrule not working - need assistance with ACL permissions PowerShell Help	1	348	May 16, 2024
Trouble deleting acl using RemoveAccessRule PowerShell Help	2	250	May 16, 2024
Setting Folder Permissions with Powershell PowerShell Help	1	274	May 16, 2024
Remove Write Permissions Without Giving Everybody Read Permissions to Everything PowerShell Help	2	350	May 16, 2024

Removing access permissions

Related topics