ansible.builtin.win_acl_inheritance (v2.9.27) — module

Install Ansible via pip

Install with pip install ansible==2.9.27

Description

Change ACL (Access Control List) inheritance and optionally copy inherited ACE's (Access Control Entry) to dedicated ACE's or vice versa.

Usage examples

Scanned by Steampunk Spotter

• Success
  Steampunk Spotter scan finished with no errors, warnings or hints.

- name: Disable inherited ACE's
  win_acl_inheritance:
    path: C:\apache
    state: absent

Scanned by Steampunk Spotter

• Success
  Steampunk Spotter scan finished with no errors, warnings or hints.

- name: Disable and copy inherited ACE's
  win_acl_inheritance:
    path: C:\apache
    state: absent
    reorganize: yes

Scanned by Steampunk Spotter

• Success
  Steampunk Spotter scan finished with no errors, warnings or hints.

- name: Enable and remove dedicated ACE's
  win_acl_inheritance:
    path: C:\apache
    state: present
    reorganize: yes

Inputs

    
path:
    description:
    - Path to be used for changing inheritance
    required: true
    type: path

state:
    choices:
    - absent
    - present
    default: absent
    description:
    - Specify whether to enable I(present) or disable I(absent) ACL inheritance.
    type: str

reorganize:
    default: false
    description:
    - For P(state) = I(absent), indicates if the inherited ACE's should be copied from
      the parent directory. This is necessary (in combination with removal) for a simple
      ACL instead of using multiple ACE deny entries.
    - For P(state) = I(present), indicates if the inherited ACE's should be deduplicated
      compared to the parent directory. This removes complexity of the ACL structure.
    type: bool

See also

• win_acl
• win_file
• win_stat