Monday, June 5, 2017

Powershell Script to get all the ACL information in Active Directory

#At first open the Powershell ISE as Administartor




# then run the command Set-location AD:
  Import-module Active*

Set-Location AD:

$Objec = New-Object -TypeName PSObject

$a=Get-ChildItem -Properties * | Select pspath

foreach($b in $a.pspath)



{
  $Folders=Get-ChildItem $b -recurse | where {$_.psiscontainer}

foreach ($Folder in $Folders)



{
  $ACLs = get-acl $Folder.pspath | ForEach-Object {$_.Access}




  foreach($acl in $ACLs)



{
  $Objec | Add-Member -MemberType NoteProperty -Name Name -Value $Folders.name -Force

$Objec | Add-Member -MemberType NoteProperty -Name TYPE -Value $Folders.objectclass -Force

$Objec | Add-Member -MemberType NoteProperty -Name IdentityReference -Value $ACL.IdentityReference -Force

$Objec | Add-Member -MemberType NoteProperty -Name AccessControlType -Value $ACL.AccessControlType -Force

$Objec | Add-Member -MemberType NoteProperty -Name IsInherited -Value $ACL.IsInherited -Force

$Objec | Add-Member -MemberType NoteProperty -Name InheritanceFlags -Value $ACL.InheritanceFlags -Force

$Objec | Add-Member -MemberType NoteProperty -Name PropagationFlags -Value $ACL.PropagationFlags -Force

$objec | OUT-FILE c:/temp/test_ACL1.TXT -Append





}

}

}

  
at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Test Script

############################################################################## #####################################################...

  • TRUST
    In order to share resources between two domains, there must a trust or trusts connecting the two domains. Trusts do not provide access th...
  • Delegation Of Control
    Delegation of Control allow a user to administrating a number of users in a OU Level in Active Directory. Although there is n number of opt...
  • (no title)
                                                                 Computer Account:                                                             ...