| external help file | Module Name | schema |
|---|---|---|
AdmPwd.PS.dll-Help.xml |
AdmPwd.PS |
2.0.0 |
Delegates the permission to read passwords of local admin account of computers in given AD container.
Set-AdmPwdReadPasswordPermission [-Identity] <String> [-AllowedPrincipals] <String[]> [[-ForestDnsName] <String>] [<CommonParameters>]Delegates the permission to read passwords of local admin account of computers in given AD container to security principals (users or groups) specified in AllowedPrincipals parameter
Set-AdmPwdReadPasswordPermission -Identity:MyComputers -AllowedPrincipals:MyDomain\AdmPwdPasswordReadersAllows members of group MyDomain\AdmPwdPasswordReaders to read local admin password of computers in container MyComputers
Identification of container where to set permissions.
Permissions are then inherited to computers within this container and subcontainers.
Identity can be either name or distinguishedName of the container, or distinguishedName of computer object (so you can delegate the permission on individual computer objects)
Type: String
Parameter Sets: (All)
Aliases: OrgUnit
Required: True
Position: 0
Default value: None
Accept pipeline input: True (ByValue)
Accept wildcard characters: FalseList of security principals (user accounts of groups) to delegate the permission to
Type: String[]
Parameter Sets: (All)
Aliases:
Required: True
Position: 1
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseDNS Name of AD forest where to find. If not specified, current forest is used.
Type: String
Parameter Sets: (All)
Aliases:
Required: False
Position: 2
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseThis cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.
Caller needs to have permission to modify ACL on respective container.