Check in powershell permission string is valid
I try to implement a script which changes folder structure permission depending on some conditions. So far I set permissions with
$accessRule = New-Object System.Security.AccessControl.FileSystemAccessRule("$($group.Name)", @("$($group.Value.rights)"), "ContainerInherit, ObjectInherit", "None", "$($group.Value.type)")
$aclFolder.AddAccessRule($accessRule)
Set-Acl $folder $aclFolder
So far it works. But the script currently assumes, that a permission does exist. It it does not, the AddAccessRule command throws and error.
Is there any way recognize a permission exists?
powershell acl
asked Nov 13 '18 at 15:01
prodigy7prodigy7
112
add a comment |
I try to implement a script which changes folder structure permission depending on some conditions. So far I set permissions with
$accessRule = New-Object System.Security.AccessControl.FileSystemAccessRule("$($group.Name)", @("$($group.Value.rights)"), "ContainerInherit, ObjectInherit", "None", "$($group.Value.type)")
$aclFolder.AddAccessRule($accessRule)
Set-Acl $folder $aclFolder
So far it works. But the script currently assumes, that a permission does exist. It it does not, the AddAccessRule command throws and error.
Is there any way recognize a permission exists?
powershell acl
asked Nov 13 '18 at 15:01
prodigy7prodigy7
112
Maybe I should give a more detailed description: $($group.Name) could be a string for a group which does not exist. When I apply a group/user which does not exist, it will throw a error. I want catch this error by first checking, the string does exist.
– prodigy7
Nov 14 '18 at 8:55
add a comment |
I try to implement a script which changes folder structure permission depending on some conditions. So far I set permissions with
$accessRule = New-Object System.Security.AccessControl.FileSystemAccessRule("$($group.Name)", @("$($group.Value.rights)"), "ContainerInherit, ObjectInherit", "None", "$($group.Value.type)")
$aclFolder.AddAccessRule($accessRule)
Set-Acl $folder $aclFolder
So far it works. But the script currently assumes, that a permission does exist. It it does not, the AddAccessRule command throws and error.
Is there any way recognize a permission exists?
powershell acl
asked Nov 13 '18 at 15:01
prodigy7prodigy7
112
I try to implement a script which changes folder structure permission depending on some conditions. So far I set permissions with
$accessRule = New-Object System.Security.AccessControl.FileSystemAccessRule("$($group.Name)", @("$($group.Value.rights)"), "ContainerInherit, ObjectInherit", "None", "$($group.Value.type)")
$aclFolder.AddAccessRule($accessRule)
Set-Acl $folder $aclFolder
So far it works. But the script currently assumes, that a permission does exist. It it does not, the AddAccessRule command throws and error.
Is there any way recognize a permission exists?
powershell acl
powershell acl
asked Nov 13 '18 at 15:01
prodigy7prodigy7
112
asked Nov 13 '18 at 15:01
prodigy7prodigy7
112
asked Nov 13 '18 at 15:01
prodigy7prodigy7
112
asked Nov 13 '18 at 15:01
prodigy7prodigy7
112
asked Nov 13 '18 at 15:01
prodigy7prodigy7
112
112
Maybe I should give a more detailed description: $($group.Name) could be a string for a group which does not exist. When I apply a group/user which does not exist, it will throw a error. I want catch this error by first checking, the string does exist.
– prodigy7
Nov 14 '18 at 8:55
add a comment |
Maybe I should give a more detailed description: $($group.Name) could be a string for a group which does not exist. When I apply a group/user which does not exist, it will throw a error. I want catch this error by first checking, the string does exist.
– prodigy7
Nov 14 '18 at 8:55
Maybe I should give a more detailed description: $($group.Name) could be a string for a group which does not exist. When I apply a group/user which does not exist, it will throw a error. I want catch this error by first checking, the string does exist.
– prodigy7
Nov 14 '18 at 8:55
Maybe I should give a more detailed description: $($group.Name) could be a string for a group which does not exist. When I apply a group/user which does not exist, it will throw a error. I want catch this error by first checking, the string does exist.
– prodigy7
Nov 14 '18 at 8:55
add a comment |
1 Answer
1
active
oldest
votes
Use Get-Acl $folder to read the current ACL and to verify if there are any permissions applied already.
answered Nov 13 '18 at 15:27
TobyUTobyU
2,3031921
add a comment |
Your Answer
StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53283842%2fcheck-in-powershell-permission-string-is-valid%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
Use Get-Acl $folder to read the current ACL and to verify if there are any permissions applied already.
answered Nov 13 '18 at 15:27
TobyUTobyU
2,3031921
add a comment |
Use Get-Acl $folder to read the current ACL and to verify if there are any permissions applied already.
answered Nov 13 '18 at 15:27
TobyUTobyU
2,3031921
add a comment |
Use Get-Acl $folder to read the current ACL and to verify if there are any permissions applied already.
answered Nov 13 '18 at 15:27
TobyUTobyU
2,3031921
Use Get-Acl $folder to read the current ACL and to verify if there are any permissions applied already.
answered Nov 13 '18 at 15:27
TobyUTobyU
2,3031921
answered Nov 13 '18 at 15:27
TobyUTobyU
2,3031921
answered Nov 13 '18 at 15:27
TobyUTobyU
2,3031921
answered Nov 13 '18 at 15:27
TobyUTobyU
2,3031921
2,3031921
add a comment |
add a comment |
Thanks for contributing an answer to Stack Overflow!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53283842%2fcheck-in-powershell-permission-string-is-valid%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Maybe I should give a more detailed description: $($group.Name) could be a string for a group which does not exist. When I apply a group/user which does not exist, it will throw a error. I want catch this error by first checking, the string does exist.
– prodigy7
Nov 14 '18 at 8:55