I user this:
get-acl -Path \\10.0.55.207\users\* | Select-Object @{n="Path"; e={Convert-Path
$_.Path}},AccessToString | fl | Out-File
\\opconserver\symitar\Export\Windows\ACL\acl.txt
Generate it twice a month or as needed.
Validate settings.
From: [email protected] [mailto:[email protected]] On
Behalf Of Tammy George
Sent: Monday, October 30, 2017 1:21 PM
To: NT Issues ([email protected]) <[email protected]>
Subject: [NTSysADM] NTFS permission management on shares/directories
Notice: This email is from an outside source. Please do not open any
attachments, click on any hyperlinks, or respond without first confirming the
authenticity of the email.
Good afternoon.
We are in the process of migrating our shared departmental network folders to
SharePoint Online. We'll be doing a very gradual process and working with each
department before moving onto the next. As part of the procedure, we want to
change all users' access on each top level folder (as well as its many layers
of subfolders) to read-only.
For example, Arts and all subfolders then onto English and all subfolders, etc.
Step one would be to generate a report of all existing permissions and then
change all user permissions (minus admins, helpdesk, etc) to read-only.
We've tried out get-acl but we're wondering if there's cleaner/easier way to do
this. Freeware or a reasonably priced utility. With that said, I do believe
I could convince my boss to purchase a more feature packed utility if there is
one that's highly recommended. We did download & try ManageEngine's product
but it won't touch inherited permissions. I've also downloaded Netwrix's
Auditor but haven't tried it out yet but I believe this will likely be out of
our price range anyway.
Any feedback would be greatly appreciated!
Thanks in advance.
- Tammy
Tammy George
Systems Administrator, Technology Services
Acadia University
Wolfville, Nova Scotia, Canada, B4P 2R6
t. (902) 585-1158
w. ts.acadiau.ca<http://commar.acadiau.ca/>
acadiau.ca<http://www2.acadiau.ca/index.php>
Facebook<https://www.facebook.com/acadiauniversity>
Twitter<https://twitter.com/acadiau>
YouTube<https://www.youtube.com/user/AcadiaWebmaster>
LinkedIn<https://www.linkedin.com/company/acadia-university?trk=biz-companies-cym>
Flickr<https://www.flickr.com/photos/acadiauniversity/albums>
[cid:[email protected]]
This e-mail and any files transmitted with it are property of Indiana Members
Credit Union, are confidential, and are intended solely for the use of the
individual or entity to whom this e-mail is addressed. If you are not one of
the named recipient(s) or otherwise have reason to believe that you have
received this message in error, please notify the sender and delete this
message immediately from your computer. Any other use, retention,
dissemination, forwarding, printing, or copying of this email is strictly
prohibited.
Please consider the environment before printing this email.
