This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 71%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJK%3C/text%3E%3C/svg%3E)
Hi all,
I am trying to perfect my server installation script, which runs a bunch of tasks on every new machine. The script is runned under a local admin account which prompts for domain credentials. Everything is working great. I am trying to create a folder on our NAS and set modify permissions on it. however the variables are not working. I have tried to run all the commands using the ; separator. Below is part of the script that I am using.
$NASfolder is the path of the folder on the NAS
$cred is are the domain credentials. Can someone help me?
Invoke-Command -ComputerName server.domain.local -Credential $cred {New-Item -Path "P:\P" -Name "$Using:NASfolder" -ItemType "directory"}
Invoke-Command -ComputerName server.domain.local -Credential $cred {$Acl = Get-Acl P:\P\"$Using:NASfolder"}
Invoke-Command -ComputerName server.domain.local -Credential $cred {$Ar = New-Object system.Security.AccessControl.FileSystemAccessRule("Domain\User", "Modify", "ContainerInherit, ObjectInherit", "None", "Allow")}
Invoke-Command -ComputerName server.domain.local -Credential $cred {$Acl.Setaccessrule($Ar)}
Invoke-Command -ComputerName server.domain.local -Credential $cred {Set-Acl P:\P\"$Using:NASfolder" $Acl}
Managed to do it with a one liner when using this powershell package:
https://www.powershellgallery.com/packages/NTFSSecurity/4.2.4
Invoke-Command -ComputerName servername.local -Credential $cred {Add-NTFSAccess –Path P:\folder –Account domain\username –AccessRights modify}
Hello @Jelle Kamma (NL)
It seems that the main issue is that the account running the script has no Domain permissions (even if later you authenticate with Domain credentials. This scenario was discussed in the past in the next thread, I think you may find it useful to explain the behavior:
Hope this helps with your query,
------
--If the reply is helpful, please Upvote and Accept as answer--