powershell script

spiceuser-50kto · 2021-07-02T14:27:09.000Z

Hi All,

Can someone help me to build powershell script.

I need to put groups in folder permission

example : folder name - ALCDSB
I need to add a group called ALCDSB_Central with Modify permission

There are 500 folders with different name
We want to add only those group whose name match with folder like mentioned below:

$foldername for that folder I want to add only group whose name is like $foldername_Central*

-----------------------------------------------------code--------------------------------------

$folderslist= Import-Csv C:\archiveSeverTest\folderlist.csv
$groupname= import-csv C:\archiveSeverTest\groupname.csv

foreach ($f in $folderslist){

$foldername=$f.name

foreach ($g in $groupname){

$gname=$g.name

if ( $gname=“$($foldername)central”) {

$acl = Get-Acl “C:\archiveSeverTest\21$($foldername)”
$AccessRule = New-Object System.Security.AccessControl.FileSystemAccessRule “$($gname)”,“Modify”,“Allow”
$acl.SetAccessRule($AccessRule)

$acl | Set-Acl “C:\archiveSeverTest\21$($foldername)”
}

else {
echo “group don’t match”
}
}

}

error code :

Neally · 2021-07-02T14:30:53.000Z

Happy to HELP but not a script writing service.

What have you tried? Where are you stuck?

If you post code, please use the ‘Insert Code’ button. Please and thank you!

PLEASE READ BEFORE POSTING! Read if you're new to the PowerShell forum! Programming & Development

Hi, and welcome to the PowerShell forum! Don’t apologize for being a “noob” or “newbie” or “n00b.” There’s just no need – nobody will think you’re stupid, and the forums are all about asking questions. Just ask! Use a descriptive subject. Don't say "Need help" or "PowerShell Help", actually summarize what the problem is. It helps the rest of us keep track of which problem is which. Don’t post massive scripts. We’re all volunteers and we don’t have time to read all that, nor will we copy, past…

DoctorDNS · 2021-07-02T16:54:48.000Z

Yes, you can do this, but why? If you seriously have 500 separate groups, you will have a huge job keeping those groups up to date. What is the issue???

spiceuser-50kto · 2021-07-02T17:42:36.000Z

I have uploaded my code with error message.

Any help would be really appreciated

spiceuser-50kto · 2021-07-02T17:45:41.000Z

@thomaslee

we are putting this for some archiving servies. All the gruops members are updated via scheduled task. Issue is I need to assign all those groups with their associated folders now.

Can you please check the code and highlight where I am making mistakes

Neally · 2021-07-02T17:46:18.000Z

spiceuser-50kto:

I have uploaded my code with error message.

Any help would be really appreciated

There is no code, you just posted a picture of an error message ?

263c6e3e-2c02-4328-9828-6c1347439750-2021-07-02_12-45-51.png597×637 55.1 KB

Neally · 2021-07-02T18:04:58.000Z

Did you see, if you post code, please use the insert code button?

spiceuser-50kto · 2021-07-02T18:19:22.000Z

@alexw insert code button is not working.

Neally · 2021-07-03T07:27:30.000Z

There are several things you need to change.

What does your CSV file look like? Does it have headers? Can you post a sample?

 if ( $gname="$($foldername)*central*") {

in powershell to compare you use ‘-eq’ -or ‘-like’ for strings
If you use ‘=’ that’s a value assignment

so it should be more like so

if ( $gname -like "$($foldername)*central*") {

as for the error you are getting with the identity reference, you can not just use the group name, you have to tell it the domain name.

$AccessRule = New-Object System.Security.AccessControl.FileSystemAccessRule("domain\$gname","Modify","Allow")

Neally · 2021-07-03T07:28:09.000Z

spiceuser-50kto:

Neally insert code button is not working.

Have you tried a different browser? Works for me in Google Chrome, Edge and Firefox?

spiceuser-50kto · 2021-07-03T11:55:21.000Z

Hi @alexw ,
I have made the changes as per suggestions. But now its going into the else statement, printing “group don’t match”. none of the folders permissions are updated.

My csv files are looking like this
folderlist csv
groupname csv

56275ea6-c09c-4e51-931c-9c407346174f-grouplist.PNG708×437 17.1 KB

$folderslist= Import-Csv C:\archiveSeverTest\folderlist.csv
$groupname= import-csv C:\archiveSeverTest\groupname.csv

foreach ($f in $folderslist){

    $foldername=$f.name 

    foreach ($g in $groupname){
        
        $gname=$g.name

        if ( $gname -like "$($foldername)*central*") {
        
            $acl = Get-Acl "C:\archiveSeverTest\21\$($foldername)"
            $AccessRule = New-Object System.Security.AccessControl.FileSystemAccessRule ("mwood\$gname","Modify","Allow")
            $acl.SetAccessRule($AccessRule)

            $acl | Set-Acl "C:\archiveSeverTest\21\$($foldername)"
        }

        else {
            echo "group don't match"
        }
    }

}

Neally · 2021-07-03T14:41:00.000Z

That type line seems to be your header , not ‘name’
So either remove the type row, or adjust the code

spiceuser-50kto · 2021-07-04T12:29:18.000Z

Deleted the first row from both csv file.
Still getting the same output. I don’t have any further clue.