![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 7.000000000000001%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESD%3C/text%3E%3C/svg%3E)
8,330 questions
Hi
The error message you encountered suggests that using the security identifier (SID) as the owner of the object is not allowed. To resolve this issue, you can try using the Get-Acl and Set-Acl cmdlets separately, while excluding the owner information. Here's an example:
$sourcePath = "C:\Program Files"
$destinationPath = "D:\Program Files"
$sourceAcl = Get-Acl -Path $sourcePath
$destinationAcl = $sourceAcl | Select-Object -Property * -ExcludeProperty Owner
Set-Acl -Path $destinationPath -AclObject $destinationAcl
In this code, we first retrieve the ACL (access control list) of the source directory using Get-Acl and store it in the $sourceAcl variable. Then, we create a modified ACL for the destination directory by excluding the owner information using Select-Object with the -ExcludeProperty parameter. The modified ACL is stored in the $destinationAcl variable.
Finally, we use the Set-Acl cmdlet to apply the modified ACL to the destination directory specified by the $destinationPath variable.
By excluding the owner information, you should be able to copy the security descriptor from the source directory to the destination directory without encountering the "owner of this object" error.
Please note that modifying security permissions and copying security descriptors can have implications on file system security. Ensure that you have the necessary permissions to perform these actions and exercise caution when making changes to file and folder security.