This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 61%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELS%3C/text%3E%3C/svg%3E)
Hi everyone
sorry but i'm not very good with Powershell and I need to set the ACL permission for 500 security groups in AD, in particular I should give the rights of; WRITE, READ and DELETE to user TEST1 in all groups that i have exported in TXT file, I cant understand how to set the access rule .. I tried script below but I dont know if its ok
Set-Location AD:\
$groups = Get-Content c:\groups.txt
foreach ($group In $groups) {
$ace = (Get-Acl "AD:$((Get-ADgroup $group).DistinguishedName)").Access
foreach ($acl in $ace) {
$accessrule = New-Object System.Security.AccessControl.ActiceDirectoryAccessRule("domain\test1", "Allow")
$ace.AddAccessRule($accessrule)
Set-Acl -AclObject $ace $group.DistinguishedName -Verbose -Passthru
}
}
thanks
This section is for AD FS. For AD DS questions, you can use the following forum: https://social.technet.microsoft.com/Forums/en-US/home?forum=winserverDS.