Setting ACL Question

kssox05 · January 30, 2018, 9:24am

Hi,

I’m trying to set permissions on a folder then make all child folders/files inherit those permissions of the parent folder.

Here is what I have so far. It will set the permissions to the parent but child folders/files are not getting the inherited permissions.

$path = 'C:\temp\test'

Get the ACL for an existing folder

$existingAcl = (Get-Item $path).GetAccessControl('Access')

$allInherit = [System.Security.AccessControl.InheritanceFlags]"ContainerInherit","ObjectInherit"

$permissions = $env:username,"FullControl",$allInherit,"None","Allow"

$rule = New-Object System.Security.AccessControl.FileSystemAccessRule $permissions

$existingAcl.SetAccessRule($rule)

#Enable Inheritance

$existingAcl.SetAccessRuleProtection($false,$true)

Set-Acl -path $path -AclObject $existingAcl

Any help is appreciated, thanks!

sanchez · January 30, 2018, 10:37am

Personally I find doing ACL’s natively with powershell is awful, check out the module above. Much easier to work with.

reign · January 31, 2018, 6:17pm

Example 3 from the MS Docs page at https://docs.microsoft.com/en-us/powershell/module/microsoft.powershell.security/set-acl?view=powershell-5.1 shows how to iterate through the child objects of the parent directory to accomplish this.

Looks like a simple change to the last line like below:

Get-ChildItem -Path $path -Recurse -Force | Set-Acl -AclObject $existingAcl

Topic		Replies	Views
NTFS ACLs PowerShell Help	9	167	December 13, 2016
Setting Folder ACL PowerShell Help	24	167	June 28, 2016
Modify NTFS Permissions on multiple folders PowerShell Help	0	174	December 31, 2011
Setting Folder Permissions with Powershell PowerShell Help	0	175	December 31, 2011
NTFS Permissions on Non-Inherited folders PowerShell Help	5	1747	August 31, 2021