批处理之家 - Powered by Discuz! Board

Function New-LocalUser
{
<#
.Synopsis
This function creates a local user
.Description
This function creates a local user
.Example
New-LocalUser -userName "ed" -description "cool Scripting Guy" `
-password "password"
Creates a new local user named ed with a description of cool scripting guy
and a password of password.
.Parameter ComputerName
The name of the computer upon which to create the user
.Parameter UserName
The name of the user to create
.Parameter password
The password for the newly created user
.Parameter description
The description for the newly created user
.Notes
NAME: New-LocalUser
AUTHOR: ed wilson, msft
LASTEDIT: 06/29/2011 10:07:42
KEYWORDS: Local Account Management, Users
HSG: HSG-06-30-11
.Link
Http://www.ScriptingGuys.com/blog
#Requires -Version 2.0
#>
[CmdletBinding()]
Param(
[Parameter(Position=0,
Mandatory=$True,
ValueFromPipeline=$True)]
[string]$userName,
[Parameter(Position=1,
Mandatory=$True,
ValueFromPipeline=$True)]
[string]$password,
[string]$computerName = $env:ComputerName,
[string]$description = "Created by PowerShell"
)
$computer = [ADSI]"WinNT://$computerName"
$user = $computer.Create("User", $userName)
$user.setpassword($password)
$user.put("description",$description)
$user.SetInfo()
} #end function New-LocalUser

复制代码

Function New-LocalGroup
{
<#
.Synopsis
This function creates a local group
.Description
This function creates a local group
.Example
New-LocalGroup -GroupName "mygroup" -description "cool local users"
Creates a new local group named mygroup with a description of cool local users.
.Parameter ComputerName
The name of the computer upon which to create the group
.Parameter GroupName
The name of the Group to create
.Parameter description
The description for the newly created group
.Notes
NAME: New-LocalGroup
AUTHOR: ed wilson, msft
LASTEDIT: 06/29/2011 10:07:42
KEYWORDS: Local Account Management, Groups
HSG: HSG-06-30-11
.Link
Http://www.ScriptingGuys.com/blog
#Requires -Version 2.0
#>
[CmdletBinding()]
Param(
[Parameter(Position=0,
Mandatory=$True,
ValueFromPipeline=$True)]
[string]$GroupName,
[string]$computerName = $env:ComputerName,
[string]$description = "Created by PowerShell"
)
$adsi = [ADSI]"WinNT://$computerName"
$objgroup = $adsi.Create("Group", $groupName)
$objgroup.SetInfo()
$objgroup.description = $description
$objgroup.SetInfo()
} #end function New-LocalGroup

复制代码

Function Set-LocalGroup
{
<#
.Synopsis
This function adds or removes a local user to a local group
.Description
This function adds or removes a local user to a local group
.Example
Set-LocalGroup -username "ed" -groupname "administrators" -add
Assigns the local user ed to the local administrators group
.Example
Set-LocalGroup -username "ed" -groupname "administrators" -remove
Removes the local user ed to the local administrators group
.Parameter username
The name of the local user
.Parameter groupname
The name of the local group
.Parameter ComputerName
The name of the computer
.Parameter add
causes function to add the user
.Parameter remove
causes the function to remove the user
.Notes
NAME: Set-LocalGroup
AUTHOR: ed wilson, msft
LASTEDIT: 06/29/2011 10:23:53
KEYWORDS: Local Account Management, Users, Groups
HSG: HSG-06-30-11
.Link
Http://www.ScriptingGuys.com/blog
#Requires -Version 2.0
#>
[CmdletBinding()]
Param(
[Parameter(Position=0,
Mandatory=$True,
ValueFromPipeline=$True)]
[string]$userName,
[Parameter(Position=1,
Mandatory=$True,
ValueFromPipeline=$True)]
[string]$GroupName,
[string]$computerName = $env:ComputerName,
[Parameter(ParameterSetName='addUser')]
[switch]$add,
[Parameter(ParameterSetName='removeuser')]
[switch]$remove
)
$group = [ADSI]"WinNT://$ComputerName/$GroupName,group"
if($add)
{
$group.add("WinNT://$ComputerName/$UserName")
}
if($remove)
{
$group.remove("WinNT://$ComputerName/$UserName")
}
} #end function Set-LocalGroup

复制代码

function Set-LocalUser
{
<#
.Synopsis
Enables or disables a local user
.Description
This function enables or disables a local user
.Example
Set-LocalUser -userName ed -disable
Disables a local user account named ed
.Example
Set-LocalUser -userName ed -password Password
Enables a local user account named ed and gives it the password password
.Parameter UserName
The name of the user to either enable or disable
.Parameter Password
The password of the user once it is enabled
.Parameter Description
A description to associate with the user account
.Parameter Enable
Enables the user account
.Parameter Disable
Disables the user account
.Parameter ComputerName
The name of the computer on which to perform the action
.Notes
NAME: Set-LocalUser
AUTHOR: ed wilson, msft
LASTEDIT: 06/29/2011 12:40:43
KEYWORDS: Local Account Management, Users
HSG: HSG-6-30-2011
.Link
Http://www.ScriptingGuys.com/blog
#Requires -Version 2.0
#>
[CmdletBinding()]
Param(
[Parameter(Position=0,
Mandatory=$True,
ValueFromPipeline=$True)]
[string]$userName,
[Parameter(Position=1,
Mandatory=$True,
ValueFromPipeline=$True,
ParameterSetName='EnableUser')]
[string]$password,
[Parameter(ParameterSetName='EnableUser')]
[switch]$enable,
[Parameter(ParameterSetName='DisableUser')]
[switch]$disable,
[string]$computerName = $env:ComputerName,
[string]$description = "modified via powershell"
)
$EnableUser = 512 # ADS_USER_FLAG_ENUM enumeration value from SDK
$DisableUser = 2 # ADS_USER_FLAG_ENUM enumeration value from SDK
$User = [ADSI]"WinNT://$computerName/$userName,User"
if($enable)
{
$User.setpassword($password)
$User.description = $description
$User.userflags = $EnableUser
$User.setinfo()
} #end if enable
if($disable)
{
$User.description = $description
$User.userflags = $DisableUser
$User.setinfo()
} #end if disable
} #end function Set-LocalUser

复制代码

Function Remove-LocalUser
{
<#
.Synopsis
This function deletes a local user
.Description
This function deletes a local user
.Example
Remove-LocalUser -userName "ed"
Removes a new local user named ed.
.Parameter ComputerName
The name of the computer upon which to delete the user
.Parameter UserName
The name of the user to delete
.Notes
NAME: Remove-LocalUser
AUTHOR: ed wilson, msft
LASTEDIT: 06/29/2011 10:07:42
KEYWORDS: Local Account Management, Users
HSG: HSG-06-30-11
.Link
Http://www.ScriptingGuys.com/blog
#Requires -Version 2.0
#>
[CmdletBinding()]
Param(
[Parameter(Position=0,
Mandatory=$True,
ValueFromPipeline=$True)]
[string]$userName,
[string]$computerName = $env:ComputerName
)
$User = [ADSI]"WinNT://$computerName"
$user.Delete("User",$userName)
} #end function Remove-LocalUser

复制代码

Function Remove-LocalGroup
{
<#
.Synopsis
This function deletes a local group
.Description
This function deletes a local group
.Example
Remove-LocalGroup -GroupName "mygroup"
Creates a new local group named mygroup.
.Parameter ComputerName
The name of the computer upon which to delete the group
.Parameter GroupName
The name of the Group to delete
.Notes
NAME: Remove-LocalGroup
AUTHOR: ed wilson, msft
LASTEDIT: 06/29/2011 10:07:42
KEYWORDS: Local Account Management, Groups
HSG: HSG-06-30-11
.Link
Http://www.ScriptingGuys.com/blog
#Requires -Version 2.0
#>
[CmdletBinding()]
Param(
[Parameter(Position=0,
Mandatory=$True,
ValueFromPipeline=$True)]
[string]$GroupName,
[string]$computerName = $env:ComputerName
)
$Group = [ADSI]"WinNT://$computerName"
$Group.Delete("Group",$GroupName)
} #end function Remove-LocalGroup

复制代码

function Test-IsAdministrator
{
<#
.Synopsis
Tests if the user is an administrator
.Description
Returns true if a user is an administrator, false if the user is not an administrator
.Example
Test-IsAdministrator
#>
param()
$currentUser = [Security.Principal.WindowsIdentity]::GetCurrent()
(New-Object Security.Principal.WindowsPrincipal $currentUser).IsInRole([Security.Principal.WindowsBuiltinRole]::Administrator)
} #end function Test-IsAdministrator

复制代码