I'm new to Powershell, and need some guidance. I need to create a script which will enable a operator to create a remote user folder based on the operator's (string) input. The script would then take that input, create the folder, name it, and then permission it according to the input. So far, I have the "create" part working using this:

我是Powershell的新手，需要一些指导。我需要创建一个脚本，使操作员能够根据操作符（字符串）输入创建远程用户文件夹。然后，脚本将获取该输入，创建文件夹，为其命名，然后根据输入对其进行许可。到目前为止，我使用“创建”部分工作：

'Variables

$directory = Read-Host "Enter Path"

$username = Read-Host "Enter Username"

'Create and name directory

new-item -Path $directory -name $username -ItemType directory

Using the above script, the operator is asked where the folder should be created, and what the folder name should be. in our case, the folder name is the same as the user's name (AD account name). As I said, this is working. The folder gets created, and is inheriting permissions. I now need to find a way to also permission that folder based on the operator's input of the user's NAME (AD account), and give that user Full Control for the parent/child folders, while keeping the inheritance.

使用上面的脚本，将询问操作员应在何处创建文件夹，以及文件夹名称应该是什么。在我们的示例中，文件夹名称与用户名称（AD帐户名称）相同。正如我所说，这是有效的。该文件夹已创建，并且正在继承权限。我现在需要找到一种方法来同时根据操作员输入的用户名称（AD帐户）来限制该文件夹，并在保留继承的同时为该用户提供父/子文件夹的完全控制权。

I am assuming that the script would need to check the NAME against AD, so that it can make sure the NAME is a valid AD account..? As I said, I am new to Powershell. :)

我假设脚本需要检查NAME对AD，以便它可以确保NAME是一个有效的AD帐户..？正如我所说，我是Powershell的新手。 :)

Is this even possible? Thanks!

这有可能吗？谢谢！

3 个解决方案

$User = Read-Host -input "enter user to grant access"
if(get-qaduser $user) {set-Acl $Path $ACLs}
else{write-host "Cannot find user"}

PS C:\> icacls /?

(Get-ADuser -Filter {Name -eq $username}).count -ne 0

#1

#2

$User = Read-Host -input "enter user to grant access"
if(get-qaduser $user) {set-Acl $Path $ACLs}
else{write-host "Cannot find user"}

#3

PS C:\> icacls /?

(Get-ADuser -Filter {Name -eq $username}).count -ne 0