Has anyone used Subinacl.exe on their servers to script file security changes?
2008's not listed as a supported OS so I thought I'd ask. Or is there something else hidden in 2008 R2 to make security changes from scripts?
(I'm creating users home directories on the server).
Try having a look at cacls (should be in everything above XP)
However having a look at ICALCS it seems to specify everything in the special permissons rather than the generic Read/Write/Modify boxes. Is there a reason for this? Shouldn't it highlight the default ones?
Another good useful tool that I use for this job is NTFSFix by Wisesoft, only downside is you need to run it from a workstation or a VM as it won't run on Win 7 or 2008 R2 due to it needing a coding tweak to stop it complaining about .net 1.1!
If you head to the Edugeek wiki there is some good info there...
Reset the file permissions on homedrives - Wiki
Doesn't really address your initial SubinACL query though!!