以编程方式创建和设置新主文件夹的权限

时间:2010-04-02 15:29:06

标签: c# permissions directory

我创建了一个应用来标准化我们AD域的用户创建。现在我希望能够创建,共享和设置文件夹的权限。我知道如何创建一个远程文件夹,但我不清楚在VB08中共享和设置权限的最佳方式。

提前致谢,

克里斯托弗

2 个答案:

答案 0 :(得分:2)

只是让人们知道我最终会发生什么,这里是创建远程文件夹的最终成功代码,将文件夹上的NTFS权限设置为对所选用户的完全控制,然后在新文件夹上创建一个完整的共享每个人的权限。

using System.IO;
using System.Management;
using System.Security.AccessControl;

public static void CreateFolder(String accountName, String homeFolder)
    {
        String folderName;
        String localfolderpath;
        String shareName;

        try
        {
            folderName = "\\\\server\\c$\\Home\\" + homeFolder + "\\" + accountName;
            Directory.CreateDirectory(folderName);

            localfolderpath = "C:\\Home\\" + homeFolder + "\\" + accountName;
            shareName = accountName + "$";

            FolderACL(accountName, folderName);

            makeShare(localfolderpath, shareName);

        }
        catch (Exception ex)
        {
            MessageBox.Show("Error: " + ex.ToString());
        }
    }

    public static void FolderACL(String accountName, String folderPath)
    {

        FileSystemRights Rights;

        //What rights are we setting?

        Rights = FileSystemRights.FullControl;
        bool modified;
        InheritanceFlags none = new InheritanceFlags();
        none = InheritanceFlags.None;

        //set on dir itself
        FileSystemAccessRule accessRule = new FileSystemAccessRule(accountName, Rights, none, PropagationFlags.NoPropagateInherit, AccessControlType.Allow);
        DirectoryInfo dInfo = new DirectoryInfo(folderPath);
        DirectorySecurity dSecurity = dInfo.GetAccessControl();
        dSecurity.ModifyAccessRule(AccessControlModification.Set, accessRule, out modified);

        //Always allow objects to inherit on a directory 
        InheritanceFlags iFlags = new InheritanceFlags();
        iFlags = InheritanceFlags.ContainerInherit | InheritanceFlags.ObjectInherit;

        //Add Access rule for the inheritance
        FileSystemAccessRule accessRule2 = new FileSystemAccessRule(accountName, Rights, iFlags, PropagationFlags.InheritOnly, AccessControlType.Allow);
        dSecurity.ModifyAccessRule(AccessControlModification.Add, accessRule2, out modified);

        dInfo.SetAccessControl(dSecurity);
    }



    private static void makeShare(string filepath, string sharename)
    {
        try
        {
            String servername = "server";
            // assemble the string so the scope represents the remote server
            string scope = string.Format("\\\\{0}\\root\\cimv2", servername);
            // connect to WMI on the remote server
            ManagementScope ms = new ManagementScope(scope);
            // create a new instance of the Win32_Share WMI object
            ManagementClass cls = new ManagementClass("Win32_Share");
            // set the scope of the new instance to that created above
            cls.Scope = ms;
            // assemble the arguments to be passed to the Create method
            object[] methodargs = { filepath, sharename, "0" };
            // invoke the Create method to create the share
            object result = cls.InvokeMethod("Create", methodargs);

            MessageBox.Show(result.ToString());
        }
        catch (SystemException e)
        {
            Console.WriteLine("Error attempting to create share {0}:", sharename);
            Console.WriteLine(e.Message);
        }
    }

答案 1 :(得分:1)

这是很好的教程http://weblogs.asp.net/cumpsd/archive/2004/02/08/69403.aspx 你可以从%HOMEPATH%env获得家庭路径。变量

相关问题
最新问题