IT Knowledge Base

Technical Repository

HowTo: Powershell – Enable Active Directory Inheritance on all objects

Import-Module ActiveDirectory $users = Get-ADUser -ldapfilter “(objectclass=user)” -searchbase “ou=Domain Users,dc=DOMAIN,dc=CORP” ForEach($user in $users) { # Binding the users to DS $ou = [ADSI](“LDAP://” + $user) $sec = $ou.psbase.objectSecurity if ($sec.get_AreAccessRulesProtected()) { $isProtected = $false ## allows inheritance $preserveInheritance = $true ## preserver inhreited rules $sec.SetAccessRuleProtection($isProtected, $preserveInheritance) $ou.psbase.commitchanges() Write-Host “$user is now inheriting permissions”; } else […]

Read More