![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 6%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERD%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(70.4, 68%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Hi Don,
I don't have access to my lab at the moment but here are a few options I would try....
- Set the GUID as a variable like you did with domain and base path
- use backtick (i.e. this character ` ) to escape the curly brackets any other special meaning characters
- Use the Ldap-Display-Name e.g. https://learn.microsoft.com/en-us/windows/win32/adschema/a-gplink
- Find someone else's script and see if you can adapt that e.g. https://gist.github.com/leobouard/027bbcc9941d80c8175cb337147fc0e4
- Call CMD.exe to run the DSACLS command
Actually 4 should be 1 ....
Good luck - I hope one of these helps.