I am trying to report on folder access rights with get-acl. I get the folder name as well as the access list without problem, however I would like to filter the accesstostring part so that i can filter out well-known accounts and present the information more clearly.
here is what i have so far:
get-childitem \\server\share\folder | Where {$_.psIsContainer -eq $true}| get-acl |select-object pschildname,accesstostring |Format-Listwhich returns
PSChildName : nameoffolder
AccessToString : Domain\group_RW Allow Modify, Synchronize
BUILTIN\Administrators Allow FullControl
CREATOR OWNER Allow FullControl
CVLUX\Domain Admins Allow FullControl
NT AUTHORITY\SYSTEM Allow FullControl
What i would like is to get an array from accesstostring so that i can exclude CreatorOwner, etc...
thanks in advance
bruno