TechQA.

Filter Permission by IdentityReference

2.7k views Asked by At

I am fetching some folder permissions, however, I only want permissiosn that are not "NT AUTHORITY\SYSTEM" or "BUILTIN\Administrators"

My code is:

$acl = Get-Acl $path
$perm = $acl.Access | where{$_.IdentityReference -notmatch  "NT AUTHORITY\SYSTEM"}
Write-Output $perm

But its still showing "NT AUTHORITY\SYSTEM" permission, how do I filter out that records I don't want?

powershell powershell-5.0
Original Q&A
1

There are 1 answers

5
Martin Brandl On

TL;DR: -notmatch is using regular expressions and your string contains \S which will match any non-whitespace character (which is not what you want).

use -notlike instead of -notmatch:

$acl = Get-Acl $path
$perm = $acl.Access | where{$_.IdentityReference -notlike "NT AUTHORITY\SYSTEM"}
Write-Output $perm

To filter for multiple entries, I would use -notin:

$acl = Get-Acl $path
$perm = $acl.Access | where{$_.IdentityReference -notin @("BUILTIN\Administrators", "NT AUTHORITY\SYSTEM")}
Write-Output $perm

Related Questions in POWERSHELL

Related Questions in POWERSHELL-5.0

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions