Auditing ACL/ACE Entries

[Jim de Graff]

I need to do the following on all of our servers

for each non-administrative share on the server
display the share permissions
display the ntfs permissions on the associated folder
next

I wrote the code to get a list of all of the shares but I have no idea what
calls to make to get the access control entries for either a share or a
folder (or file, for that matter). Can anyone tell me how to get this
information please?

 

[Jim de Graff]

Let me be a little more specific, I only need to know which users/groups
have which access to the level of
READ
READ/WRITE
FULL

Some sample output might be

\\wpg-apps-87\Applications$
Pyhsical Path - G:\Applications
Share Permissions
Everyone - RW
NTFS Permissions
Administrators(WPG_APPS-87\Administrators) - F
EngSyst(HYDRO) - RW
TransPlan(HYDRO) - R

It might also be nice to know if these permissions are explicit or
inherited.