win_acl_inheritance - Change ACL inheritance
New in version 2.1.
Synopsis
- Change ACL (Access Control List) inheritance and optionally copy inherited ACE’s (Access Control Entry) to dedicated ACE’s or vice versa.
Parameters
| Parameter | Choices/Defaults | Comments |
|---|---|---|
| path
required
|
Path to be used for changing inheritance
|
|
| reorganize |
no
|
For P(state) = absent, indicates if the inherited ACE's should be copied from the parent directory. This is necessary (in combination with removal) for a simple ACL instead of using multiple ACE deny entries.
For P(state) = present, indicates if the inherited ACE's should be deduplicated compared to the parent directory. This removes complexity of the ACL structure.
|
| state |
|
Specify whether to enable present or disable absent ACL inheritance
|
Examples
- name: Disable inherited ACE's
win_acl_inheritance:
path: C:\apache
state: absent
- name: Disable and copy inherited ACE's
win_acl_inheritance:
path: C:\apache
state: absent
reorganize: True
- name: Enable and remove dedicated ACE's
win_acl_inheritance:
path: C:\apache
state: present
reorganize: True
Status
This module is flagged as preview which means that it is not guaranteed to have a backwards compatible interface.
Support
For more information about Red Hat’s support of this module, please refer to this Knowledge Base article
Author
- Hans-Joachim Kliemeck (@h0nIg)
Hint
If you notice any issues in this documentation you can edit this document to improve it.
© 2012–2018 Michael DeHaan
© 2018–2019 Red Hat, Inc.
Licensed under the GNU General Public License version 3.
https://docs.ansible.com/ansible/2.5/modules/win_acl_inheritance_module.html