TestimoX

API Reference

Command

Disable-ADXACLInheritance

Namespace ADPlayground.PowerShell
Inputs
System.DirectoryServices.ActiveDirectorySecurity System.DirectoryServices.DirectoryEntry System.String

Disables ACL inheritance on an Active Directory security descriptor or entry.

Examples

Authored help example

Example 1: Disable inheritance on a security descriptor

PS>


$sd = New-Object System.DirectoryServices.ActiveDirectorySecurity
            Disable-ADXACLInheritance -Security $sd -RemoveInheritedAccessRules

Disables inheritance on an in-memory security descriptor.

Example 2: Disable inheritance on a directory object

PS>


Disable-ADXACLInheritance -ADObject "CN=User,DC=contoso,DC=com" -RemoveInheritedAccessRules

Disables inheritance on a directory object using its distinguished name.

Common Parameters

This command supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable.

For more information, see about_CommonParameters.

Syntax

Disable-ADXACLInheritance -Security <ActiveDirectorySecurity> [-RemoveInheritedAccessRules] [<CommonParameters>]
#
Parameter set: By Security

Parameters

Security ActiveDirectorySecurity requiredposition: 0pipeline: true (ByValue, ByPropertyName)
ActiveDirectorySecurity instance to modify.
RemoveInheritedAccessRules SwitchParameter optionalposition: namedpipeline: false
Indicates whether inherited rules should be removed.
Disable-ADXACLInheritance -Entry <DirectoryEntry> [-RemoveInheritedAccessRules] [<CommonParameters>]
#
Parameter set: By Entry

Parameters

Entry DirectoryEntry requiredposition: 0pipeline: true (ByValue, ByPropertyName)
DirectoryEntry object to modify.
RemoveInheritedAccessRules SwitchParameter optionalposition: namedpipeline: false
Indicates whether inherited rules should be removed.
Disable-ADXACLInheritance -ADObject <string> [-RemoveInheritedAccessRules] [<CommonParameters>]
#
Parameter set: By ADObject

Parameters

ADObject string requiredposition: 0pipeline: true (ByValue, ByPropertyName)
Distinguished name of the object to modify.
RemoveInheritedAccessRules SwitchParameter optionalposition: namedpipeline: false
Indicates whether inherited rules should be removed.