Retrieve ACL group with folder path

Question

I have to add specific ACL folder groups to target specific folders. As I am not able to create a script to do it automatically I thought to do it manually in two steps.

The groups list should be taken from a series of folders present in a source server and saved in a CSV file, according to the scheme below. I will use it later to add these groups to destination folders with another script.

I used the script below to recover the ACL groups but I don't know how to get an output as per picture below, where I can get the path of each folder and associated to it the members of each local groups.

Will be very helpful your help ;)

# Use PowerShell to get NTFS file permissions

$FolderPath = Get-ChildItem -Directory -Path "D:\VOLUME2" -Recurse -Force

$Output = @()

ForEach ($Folder in $FolderPath) {

*$Acl = Get-Acl -Path $Folder.FullName*  

*ForEach ($Access in $Acl.Access) {*  

$Properties = [ordered]@{'Folder Name'=$Folder.FullName;'Group/User'=$Access.IdentityReference;'Permissions'=$Access.FileSystemRights;'Inherited'=$Access.IsInherited}

$Output += New-Object -TypeName PSObject -Property $Properties

*}*  

}

$Output | Export-Csv -Path "D:\AgroupsVol2.csv" -NoTypeInformation

Answer 1

Hi Marc_live,

Not sure what kind of output you want. Are you trying to merge the accesses rules of one path to a single object?

Answer 2

I have to recreate the same local ACL groups from one server to another server I have copied all folders (not ACL). They have the same name and drive letters.

I need an output that I could use in a script to copy back all ACL groups to that I need the path of the folder and the ACL groups included.

For Each volume a list of ACL groups associated with the folder.

I wish to get something like that:

D:\volume02

D:\volume02\folder1, groupname11

D:\volume02\folder1,groupname12

D:\volume02\folder2,groupname21

E:\volume02\folder3, groupname31

E:\volume02\folder3,groupname32

E:\volume02\folder3,groupname33

E:\volume02\folder3,groupname34

Answer 3

As per my understanding, you already have the folders and group names in the "Folder Name" and "Group/User" fields in your script. Do you just want to separate the results by the volume or insert the volume path?

Answer 4

The script I showed at the beginning should collect all the necessary data.

I would like to reorganize them in such a way that in the CSV file I have the path to the folder and next to it (separated by a comma) the ACL group contained in it.

If there are multiple groups within the same folder it should be organized as the schema below :

Path GroupName

D:\volume02\folder1, localGroup1.1

D:\volume02\folder1, localGroup1.2

D:\volume02\folder1, localGroup1.3

D:\volume02\folder2, localGroup2.1

D:\volume02\folder2, localGroup2.2

D:\volume02\folder3, localGroup3

Answer 5

Sorry but I'm a little confused. It should be the names of the groups that have permissions on the folder in the column "Group/User" of the CSV file, say DomainName\group1, DomainName\group2, ComputerName\group3, so I think you've already got what you want in the CSV.

"Folder Name","Group/User","Permissions",...

"D:\volume02\folder1","DomainName\group1",....

"D:\volume02\folder1","DomainName\group2",....

"D:\volume02\folder2","ComputerName\group3",....

Did I misunderstand what you meant by "ACL group"?