kawa/ps-scripts
kawa/ps-scripts
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 1 Wiki Activity

Added new permissions and groups SIDs

Browse Source
This commit is contained in:
Sébastien QUEROL 2025-01-03 10:32:26 +01:00
parent 67f3e3a4fa
commit 7285578906
1 changed files with 11 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
AD/CreateN1-N2Users/Create-ADtechs.ps1
View File

@ -65,6 +65,10 @@ $grpDomainAdm = "S-1-5-21-$domaineSID-512"
$grpPrintOp = "S-1-5-32-550" $grpPrintOp = "S-1-5-32-550"
$grpServerOp = "S-1-5-32-549" $grpServerOp = "S-1-5-32-549"
$grpPowerUsers = "S-1-5-32-547" $grpPowerUsers = "S-1-5-32-547"
$grpDHCPadm = "S-1-5-21-$domaineSID-1111"
$grpDHCPuser = "S-1-5-21-$domaineSID-1110"
$grpGPOadmin = "S-1-5-21-$domaineSID-520"
$grpNetAdmin = "S-1-5-32-556"
################################# #################################
@ -74,9 +78,11 @@ $grpPowerUsers = "S-1-5-32-547"
ForEach($user in $userList){ ForEach($user in $userList){
$userPass = (GenPass) $userPass = (GenPass)
$userEncPass = ConvertTo-SecureString -String $userPass -AsPlainText -Force
$detailsUser = @{ $detailsUser = @{
Name = $user Name = $user
AccountPassword = $userPass AccountPassword = $userEncPass
Enabled = $true Enabled = $true
ChangePasswordAtLogon = $false ChangePasswordAtLogon = $false
PasswordNeverExpires = $true #On fait en sorte qu'il n'expire pas PasswordNeverExpires = $true #On fait en sorte qu'il n'expire pas
@ -85,13 +91,13 @@ ForEach($user in $userList){
#...puis on l'ajoute aux bons groupes #...puis on l'ajoute aux bons groupes
switch ($user) { switch ($user) {
"Tech-N1"{$Groups = @($grpPowerUsers,$grpPrintOp)} "Tech-N1"{$Groups = @($grpPowerUsers,$grpPrintOp,$grpDHCPuser)}
"Tech-N2"{$Groups = @($grpAccountOp,$grpPrintOp)} "Tech-N2"{$Groups = @($grpAccountOp,$grpPrintOp,$grpDHCPadm,$grpGPOadmin,$grpNetAdmin)}
"Tech-N3"{$Groups = @($grpDomainAdm)} "Tech-N3"{$Groups = @($grpDomainAdm)}
Default {} Default {}
} }
$newCsvLine = @([PSCustomObject]@{Username = $user; Password = $userPass} $newCsvLine = @([PSCustomObject]@{Username = $user; Password = $userPass})
$newCsvLine | Export-CSV "C:\techLogins-$pcName.csv" -Append -NoTypeInformation -Encoding UTF8 $newCsvLine | Export-CSV "C:\techLogins-$pcName.csv" -Append -NoTypeInformation -Encoding UTF8
ForEach ($Group in $Groups) { ForEach ($Group in $Groups) {
@ -100,7 +106,7 @@ ForEach($user in $userList){
} }
Write-Color -Text "L'utilisateur ",$User," a bien été cée et ajouté aux groupes 'Account operators' et 'Print Operators'. Son mot de passe est ",$userPass -Color White,Green,White,Cyan Write-Color -Text "L'utilisateur ",$User," a bien été crée. Son mot de passe est ",$userPass -Color White,Green,White,Cyan
} }
Write-Color -Text "Les utilisateurs ainsi que leur mots de passes ont été exportés ici : ","C:\techLogins-$pcName.csv" -Color White,Green Write-Color -Text "Les utilisateurs ainsi que leur mots de passes ont été exportés ici : ","C:\techLogins-$pcName.csv" -Color White,Green