This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 73%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELC%3C/text%3E%3C/svg%3E)
I got a script from someone to remove the Everyone permission and add the Authenticated Users permissions for the Net share.
But my script is removing it and adding the Authenticated Users, but it is only performing the action for the Root folders, not for the subfolder inside the root folder and I need to get that permission as an Inherited form parent.
I want to remove the Everyone permission from the root folder and the subfolders add the Authenticated Users to the root folder and to the Subfolders need to be added.
And I just want to know like my script is excluding the shares which for ('Remote Admin' ,"Default share' , 'Remote IPC' , 'Printer Drivers'")
It would be great if someone can please help me achieve this...
$ScriptBlock = {
"Executing on {0}" -f $env:COMPUTERNAME
$ExclusionList = 'ADMIN\$','IPC\$' -join '|'
$Shares = Get-SmbShare | Where-Object -Property Name -notmatch $ExclusionList | Where-Object -Property Path -notmatch '^\w:\\$'
"Analyzing these shares...."
$Shares
foreach ($Share in $Shares) {
$Everyone = Get-SmbShareAccess $Share.Name | Where-Object -Property AccountName -eq Everyone
if ($Everyone) {
Revoke-SmbShareAccess $Share.Name -AccountName 'Everyone' -Force
Grant-SmbShareAccess $Share.Name -AccountName 'Authenticated Users' -AccessRight FullControl -Force
"Share {0} has been updated." -f $Share.Name
}
}
"Complete"
}
$ComputerList = Get-Content "C:\users\a-lchandrakanthredd\Desktop\Test\Servers.txt"
Invoke-Command -ComputerName $ComputerList -ScriptBlock $ScriptBlock
I have written a script to remove the Everyone permission and add the Authenticated Users permissions for the Net share.
No you did not. I wrote the key elements to that script.
This question is a duplicate of your original post.
If you want forum users to help you, don't claim that code that we wrote for you is your own.
HI, @MotoX80 with the script which you provided for removing the Everyone permission and adding the Authenticated Users permissions for the Net share is working partially, I can still see the everyone permission in one of the Net shares.
When I try to run the script which I have to pull up the permissions using the Get-Acl I am able to see the Everyone Permissions, is there any way to remove the permission here as well?
Attaching the Script which will pull the permissions for the Everone.149950-everyone-permissions.txt
Did you see my last reply to your initial question? The one where I shared my ReplaceAcl.ps1 script?
