Enhance Set-CertificateTemplateAcl to allow disable of inheritance

[BZanten]

Hi Team While using your toolkit all the time, I have a small enhancement request that I currently have to do outside the cmdlets, using native AD scripting.

When we create new Certificate templates we'll want to update the security on it, but also block inheritance, from the parent container ACL. The code is similar to $TemplateDE.psbase.ObjectSecurity.SetAccessRuleProtection($true,$false) mentioned in PKISolutions/pkix.net#100

Would it be possible to add this as a switch in the Set-CertificateTemplateAcl cmdlet ?

Regards, Ben

[Crypt32]

I think it is possible to implement this via extra parameters in Set-CertificateTemplateAcl. Or, at very least, it will be available in my implementation of CertificateTemplateSecurityDescriptor class so inheritance properties will be copied back to LDAP object security.