Set-ACL on AD Computer Object

Question

I am attempting to Set-Acl on a Computer Object in AD. Firstly I get the ACL using:

$acl = (Get-Acl AD:\\\'CN=Tester1,OU=Ou1,OU=OU2,OU=OU3,DC=Co         


        

Answer 1

ACE for AD objects you must create with System.DirectoryServices.ActiveDirectoryAccessRule object instead of System.Security.AccessControl.FileSystemAccessRule.

Good description and example is here: Add Object Specific ACEs using Active Directory Powershell