icacls remove user variable

Does anyone know how to use a variable for the user name to remove from file permissions using the icacls or some other command?

I'm trying to get a command to use for this to have a remove "Account Unknown" context menu to make it easier to remove them.

"Account Unknown*" doesn't work in the command for the account name.

Add Reset Permissions to Context Menu in Windows | Windows 10 Tutorials


icacls "<full path of file/folder>" /remove <account name> /T /C

OR

icacls <Drive letter>:\*.* /remove <account name> /T /C

It should always use the "S-1-5-21" for a local account, but probably not if anything else (ex: domain).

It's a good start. I'll play with it.

Thank you.

Just tested, and it didn't remove it.

Brink said:

Just tested, and it didn't remove it.

Hi Shawn

I tried your method, to delete an orphan (deleted) local account, which for some unexplained reason has been inserted in all my User folders, but it failed, as it did with you!
So I made a PowerShell script, which works perfectly, at least in my end.

Clear-SID.ps1

Maybe you could give it a try.
Please note that you need to open the script and fill in your own $folder and $OrphanSID variables, before you run it!
(Or you can customize it to accept them as parameters)

Thank you Dimitri.

You're very welcome.
I would be really interested to hear your results!

Shawn, doesn't %username% work?

Hello Rich,

It would for the path of the user profile folder, but I was hoping for a variable that could be used for the "Account Unknown" SID so it could be applied globally without having to use a unique SID.