|
Posted by Roger Abell [MVP] on December 11, 2005, 9:57 am
Please log in for more thread options
Go to microsoft.com/downloads and get
cacls.vbs
(note: the IS .vbs)
This has the granularity you need, and also provides
example of setting pretty much any possible ACE
from script.
> Here are the requirements:
>
> 1. Set a folder not to inherit permissions from parent folder.
>
> 2. Remove all existing permissions from the folder.
>
> 3. Set two advanced security permissions on a folder, Traverse Folder /
> Execute File and List Folder / Read Data, for the Everyone group.
>
> 4. Give the Adminstrators group Full Control.
>
> 5. Force these permissions on all child folders and objects.
>
> 5. Do all this from command line.
>
> Sound easy? It is kicking my butt. I've tried cacls and xcacls but they
> don't get down to the detail i need. I tried creating my own Security
> Policy, naming the files and specific permissions i wanted to apply,
> applied the newly created policy to the machine's group policy...no luck
> (first shot at that, don't really know what i'm doing).
>
> Help?
>
> Thanks!
>
> Jason
>
>
>
>
| 
XML Sitemap