From 22bc7e4d05d18cce7578ee70ef96de545d862f99 Mon Sep 17 00:00:00 2001
From: bschaper <bschaper@tcse.us>
Date: Tue, 14 Jan 2025 13:24:38 -0600
Subject: [PATCH] Updated Script

---
 Patches/Windows/Remove-Permissions.ps1 | 26 +++++++++++++++++++-------
 1 file changed, 19 insertions(+), 7 deletions(-)

diff --git a/Patches/Windows/Remove-Permissions.ps1 b/Patches/Windows/Remove-Permissions.ps1
index 887e5a8..3e787ce 100644
--- a/Patches/Windows/Remove-Permissions.ps1
+++ b/Patches/Windows/Remove-Permissions.ps1
@@ -1,10 +1,22 @@
-$computerName = $env:COMPUTERNAME
-$domain = (Get-WmiObject Win32_ComputerSystem).Domain
-
 $folderPath = "C:\Scripts"
-$groupName = "Authenticated Users"
+$groupName = "NT AUTHORITY\Authenticated Users"
 
+# Get current ACL
 $acl = Get-Acl -Path $folderPath
-$acl.SetAccessRuleProtection($true, $false)
-$acl.RemoveAccessRule($acl.Access | Where-Object {$_.IdentityReference -eq "$domain\$groupName"})
-Set-Acl -Path $folderPath -AclObject $acl
\ No newline at end of file
+
+# Create a new FileSystemSecurity object
+$newAcl = New-Object System.Security.AccessControl.DirectorySecurity
+
+# Disable inheritance and copy existing rules
+$newAcl.SetAccessRuleProtection($true, $true)
+
+# Get all rules except Authenticated Users
+$rules = $acl.Access | Where-Object {$_.IdentityReference -ne $groupName}
+
+# Add each rule to the new ACL
+foreach ($rule in $rules) {
+    $newAcl.AddAccessRule($rule)
+}
+
+# Apply the modified ACL back to the folder
+Set-Acl -Path $folderPath -AclObject $newAcl
\ No newline at end of file