ACL rights assignment in new user script

i've been tasked converting old new-user script runs @ least once day written in vb powershell. script takes input csv file hr has necessary info , creates user, adds them specific groups based on info in csv, enables exchange mailbox, , creates home directory. i'm having bit of trouble planning out rights assignment part on user home directory; need able add specific user (set variable @ beginning of script) , 3 static groups. best way that? can grab outside modules if needed (a section of script checks , if necessary installs modules , adds snap-ins), i'd rather keep 100% powershell - no icacls or outside commands.

any suggestions?

thank in advance.

---

zarberg@gmail.com

here's came file system stuff:

foreach ($user in $userlist)     {     $samaccountname = $user.empid     $fqn = "domain\" + $samaccountname     $homedirpath = "\\fileserver\users\$samaccountname"     new-item -itemtype directory -path $homedirpath -force      #set acls user , required groups     $homedir_acl = get-acl $homedirpath     $acl_access1 = 'domain\homedirectory admins'     $acl_access2 = "domain\$samaccountname"     $fullrights = "fullcontrol"     $modifyrights = "modify"     $inheritrights = "containerinherit,objectinherit"     $rule1 = new-object system.security.accesscontrol.filesystemaccessrule ($acl_access1, $fullrights, $inheritrights, "none", "allow")     $rule2 = new-object system.security.accesscontrol.filesystemaccessrule ($acl_access2, $modifyrights, $inheritrights, "none", "allow")     $homedir_acl.addaccessrule($rule1)     set-acl $homedirpath $homedir_acl     $homedir_acl.addaccessrule($rule2)     set-acl $homedirpath $homedir_acl      #set owner on home directory     $owner = new-object system.security.principal.ntaccount($fqn)     $homedir_acl.setowner($owner)     set-acl $homedirpath $homedir_acl      } 

---

zarberg@gmail.com

Windows Server  >  Windows PowerShell