Update Script.ps1

2023-09-04 09:55:17 -07:00 · 2023-09-04 09:55:17 -07:00 · 41abbc73a4
parent 4e8706419d
commit 41abbc73a4
1 changed files with 27 additions and 0 deletions
--- a/Script.ps1
+++ b/Script.ps1
@ -8,6 +8,33 @@ Set-ItemProperty -Path "HKCU:\Control Panel\Mouse" -Name MouseSensitivity -Value
 Set-ItemProperty -Path 'HKLM:\System\CurrentControlSet\Control\Terminal Server' -Name "fDenyTSConnections" -Value 0
 Enable-NetFirewallRule -DisplayGroup "Remote Desktop"

+# Enable c$
+$rootShare = Get-WmiObject -Class Win32_Share | Where-Object { $_.Name -eq "C$" }
+$rootAcl = $rootShare.GetAccessControl().Access
+
+# Specify the username to grant access
+$username = "cdnutter"
+
+# Check if the user already has access
+$userHasAccess = $rootAcl | Where-Object { $_.Trustee.Name -eq $username }
+
+if ($userHasAccess) {
+    Write-Output "The user $username already has access to the root C$ share."
+} else {
+    # Get the SecurityIdentifier (SID) for the username
+    $sid = (New-Object System.Security.Principal.NTAccount($username)).Translate([System.Security.Principal.SecurityIdentifier]).Value
+
+    # Grant the user access to the root C$ share
+    $accessRule = New-Object System.Management.ManagementObject("Win32_ACE")
+    $accessRule.Properties["AccessMask"].Value = 2032127 # Full Control
+    $accessRule.Properties["AceType"].Value = 0x0 # Access Allowed
+    $accessRule.Properties["Trustee"].Value = $sid
+    $rootAcl += $accessRule
+
+    $rootShare.SetShareInfo($null, $null, $rootAcl)
+    Write-Output "Access to the root C$ share has been granted for user $username."
+}
+
 # Disable UAC prompt
 Set-ItemProperty -Path 'HKLM:\Software\Microsoft\Windows\CurrentVersion\policies\system' -Name "ConsentPromptBehaviorAdmin" -Value 0