posts-powershell

Cloning Active Directory Security Settings

Whenever you add delegation rights to an AD object (i.e. allow a user to manage the members of an organizational unit), you really invoke a...

Written By: ps1
Last Updated: April 21, 2025
2 minutes read

Cloning Active Directory Security Settings Easily

AD security descriptors can be very complex. Cloning AD security is easy, though. So if you want to apply the very same security settings to another AD object, you can read the existing security settings from one object, and copy them to another.

Copying Security Settings Between OUs

This script illustrates how you can read the security settings from one OU, and copy it to another OU. This requires the ActiveDirectory provider that ships with the ActiveDirectory module. This module is part of the free Microsoft RSAT tools that need to be present.

#requires -Version 2 -Modules ActiveDirectory
Import-Module -Name ActiveDirectory

# read AD security from NewOU1
$sd = Get-Acl -Path 'AD:\OU=NewOU1,DC=powershell,DC=local'

# assign security to NewOU2
Set-Acl -Path 'AD:\OU=NewOU2,DC=powershell,DC=local' -AclObject $sd

ReTweet this Tip!

ps1

Keep SQL Server Fast, Reliable and Secure - with SQL Diagnostic Manager

Real time monitoring
Diagnose blocking, deadlocks, bottlenecks
Powerful dashboards, customizable reports
Proactive alerts to prevent downtime
Optimize performance across servers

Start a Free Trial

Must Read

Ready? Join 100k+ IDERA Users

Contact our sales team to get a personalized demo of our database management software for SQL Server!

Get a Demo Contact Sales

Monitor & Protect

Idera SQL

Webyog

Data Modeling & Management

Aqua Data Studio

ER/Studio

WhereScape

Migration & Intelligence

BitTitan

Perspectium

Yellowfin

Free Trial

Resources

Support

Events

Contact Sales

Customers

Free Trial

Enterprises

Database

Cloud Services

Applications

Free Trial

SQL Diagnostic Manager

SQL Compliance Manager

SQL Secure

SQL Safe Backup

SQL Inventory Manager

SQL Admin Toolset

DB PowerStudio

Free Tools

Cloning Active Directory Security Settings

TABLE OF CONTENTS

Cloning Active Directory Security Settings Easily

Copying Security Settings Between OUs

ps1

Keep SQL Server Fast, Reliable and Secure - with SQL Diagnostic Manager

Must Read

Related Articles

Ready? Join 100k+ IDERA Users

Monitor & Protect

Idera SQL

Webyog

Data Modeling & Management

Aqua Data Studio

ER/Studio

WhereScape

Migration & Intelligence

BitTitan

Perspectium

Yellowfin

Free Trial

Resources

Support

Events

Contact Sales

Customers

Free Trial

Enterprises

Database

Cloud Services

Applications

Free Trial

SQL Diagnostic Manager

SQL Compliance Manager

SQL Secure

SQL Safe Backup

SQL Inventory Manager

SQL Admin Toolset

DB PowerStudio

Free Tools

Cloning Active Directory Security Settings

TABLE OF CONTENTS

Cloning Active Directory Security Settings Easily

Copying Security Settings Between OUs

ps1

Keep SQL Server Fast, Reliable and Secure - with SQL Diagnostic Manager

Must Read

Related Articles

Automating Defender Antivirus (Part 2)

Converting Wavelength to RGB

Querying Advanced Printer Info via SNMP

Unlock Additional PowerShell Modules in Windows 10

Exporting CSV without Quotes (and Other Conversion Tricks)

Using BITS to Download Files (Part 1)

Ready? Join 100k+ IDERA Users