sthAdminSDHolder

1.0

HelperFunctions/inEnableAccessRulesInheritance.ps1

                                function inEnableAccessRulesInheritance

{

    Param(

        [Parameter(Mandatory)]

        $AdminSDHolderProtectedAccount

    )

    $user = [ADSI]"LDAP://$($AdminSDHolderProtectedAccount.DistinguishedName)"

    if ($user.psbase.objectSecurity.AreAccessRulesProtected)

    {

        $isProtected = $false

        $preserveInheritance = $true

        $user.psbase.ObjectSecurity.SetAccessRuleProtection($isProtected, $preserveInheritance)

        $user.psbase.CommitChanges()

    }

    Write-Output -InputObject "Access rules inheritance enabled."

}