Powershell管理系列(四十)PowerShell查询和解锁AD账号(改进后,只发一次邮件)
Posted
tags:
篇首语:本文由小常识网(cha138.com)小编为大家整理,主要介绍了Powershell管理系列(四十)PowerShell查询和解锁AD账号(改进后,只发一次邮件)相关的知识,希望对你有一定的参考价值。
-----提供AD\Exchange\Lync\Sharepoint\CRM\SC\O365等微软产品实施及外包,QQ:185426445.电话18666943750
需求:根据要求对集团AD域及下属3个子域的所有AD账号进行统计,查询所有锁定的账号,解锁,并每天早上发送邮件到指向邮箱。(之前三十九的基础上略作调整,只发一封邮件即可)
Remove-Item C:\get_locked_user\ -Recurse -Force if(!(test-path C:\get_locked_user)) {New-Item C:\get_locked_user -type directory} Import-Module activedirectory $yuntcloud_Lockeduser=Search-ADAccount -LockedOut -SearchBase "dc=yuntcloud,dc=com" -server dc01|select name,samaccountname $aaa_Lockeduser=Search-ADAccount -LockedOut -SearchBase "dc=aaa,dc=yuntcloud,dc=com" -server aaaDC1|select name,samaccountname $bbb_Lockeduser=Search-ADAccount -LockedOut -SearchBase "dc=bbb,dc=yuntcloud,dc=com" -server bbbdc1|select name,samaccountname $ccc_Lockeduser=Search-ADAccount -LockedOut -SearchBase "dc=ccc,dc=yuntcloud,dc=com" -server cccDC1|select name,samaccountname #send email $UserName = "[email protected]" #定义管理员账户名称 $Password = ConvertTo-SecureString "Anvf20170708" -AsPlainText –Force $cred = New-Object System.Management.Automation.PSCredential($UserName,$Password) $nFrom="[email protected]" $nTo="[email protected]" [email protected]() #Unlock yuntcloud Locked user if ([string]::IsNullOrEmpty($($yuntcloud_Lockeduser|%{$_.name}))) { Write-Host "yuntcloud no locked user" Start-Sleep 5 Set-Content C:\get_locked_user\locked.txt -Value "yuntcloud no locked user" #Send-MailMessage -From $nFrom -To $nTo -Subject "yuntcloud no locked user" -Body "yuntcloud no locked user" -Credential $cred -SmtpServer "mail.yuntcloud.com" -Encoding ([System.Text.Encoding]::UTF8) } else { Write-Host "yuntcloud Locked user" foreach($i in $yuntcloud_Lockeduser) { Write-Host $i.name $lockeduser+=$i } Start-Sleep 5 Search-ADAccount -LockedOut -SearchBase "dc=yuntcloud,dc=com" -server dc01 |Unlock-ADAccount Write-Host "yuntcloud all locked account were unlocked" $lockeduser |Export-Csv -Path C:\get_locked_user\yuntcloud_lockeduser.csv -NoTypeInformation -Encoding utf8 add-Content C:\get_locked_user\locked.txt -Value "yuntcloud Locked user" add-Content C:\get_locked_user\locked.txt -Value $($yuntcloud_Lockeduser|%{$_.name}) #Send-MailMessage -From $nfrom -To $nto -Subject "yuntcloud locked user" -Body "yuntcloud locked user" -Attachments "C:\get_locked_user\yuntcloud_lockeduser.csv" -Credential $cred -SmtpServer mail.yuntcloud.com -Encoding ([System.Text.Encoding]::UTF8) Start-Sleep 3 } #Unlock aaa.yuntcloud.com Locked user [email protected]() if ([string]::IsNullOrEmpty($($aaa_Lockeduser|%{$_.name}))) { Write-Host "aaa no locked user" Start-Sleep 5 add-Content C:\get_locked_user\locked.txt -Value "aaa no locked user" #Send-MailMessage -From $nfrom -To $nto -Subject "aaa no locked user" -Body "aaa no locked user" -Credential $cred -SmtpServer mail.yuntcloud.com -Encoding ([System.Text.Encoding]::UTF8) } else { Write-Host "aaa Locked user" foreach($i in $aaa_Lockeduser) { Write-Host $i.name $lockeduser+=$i } Start-Sleep 5 Search-ADAccount -LockedOut -SearchBase "dc=aaa,dc=yuntcloud,dc=com" -server aaaDC1 |Unlock-ADAccount Write-Host "aaa all locked account were unlocked" $lockeduser |Export-Csv -Path C:\get_locked_user\aaa_lockeduser.csv -NoTypeInformation -Encoding utf8 add-Content C:\get_locked_user\locked.txt -Value "aaa Locked user" add-Content C:\get_locked_user\locked.txt -Value $($aaa_Lockeduser|%{$_.name}) #Send-MailMessage -From $nfrom -To $nto -Subject "aaa locked user" -Body "aaa locked user" -Attachments "C:\get_locked_user\aaa_lockeduser.csv" -Credential $cred -SmtpServer mail.yuntcloud.com -Encoding ([System.Text.Encoding]::UTF8) Start-Sleep 3 } #Unlock bbb.yuntcloud.com Locked user [email protected]() if ([string]::IsNullOrEmpty($($bbb_Lockeduser|%{$_.name}))) { Write-Host "bbb no locked user" Start-Sleep 5 add-Content C:\get_locked_user\locked.txt -Value "bbb no locked user" #Send-MailMessage -From $nfrom -To $nto -Subject "bbb no locked user" -Body "bbb no locked user" -Credential $cred -SmtpServer mail.yuntcloud.com -Encoding ([System.Text.Encoding]::UTF8) } else { Write-Host "bbb Locked user" foreach($i in $bbb_Lockeduser) { Write-Host $i.name $lockeduser+=$i } Start-Sleep 5 Search-ADAccount -LockedOut -SearchBase "dc=bbb,dc=yuntcloud,dc=com" -server bbbdc1 |Unlock-ADAccount Write-Host "bbb all locked account were unlocked" $lockeduser |Export-Csv -Path C:\get_locked_user\bbb_lockeduser.csv -NoTypeInformation -Encoding utf8 add-Content C:\get_locked_user\locked.txt -Value "bbb Locked user" add-Content C:\get_locked_user\locked.txt -Value $($bbb_Lockeduser|%{$_.name}) #Send-MailMessage -From $nfrom -To $nto -Subject "bbb locked user" -Body "bbb locked user" -Attachments "C:\get_locked_user\bbb_lockeduser.csv" -Credential $cred -SmtpServer mail.yuntcloud.com -Encoding ([System.Text.Encoding]::UTF8) Start-Sleep 3 } #Unlock ccc.yuntcloud.com Locked user [email protected]() if ([string]::IsNullOrEmpty($($ccc_Lockeduser|%{$_.name}))) { Write-Host "ccc no locked user" Start-Sleep 5 add-Content C:\get_locked_user\locked.txt -Value "ccc no locked user" #Send-MailMessage -From $nfrom -To $nto -Subject "ccc no locked user" -Body "ccc no locked user" -Credential $cred -SmtpServer mail.yuntcloud.com -Encoding ([System.Text.Encoding]::UTF8) } else { Write-Host "ccc Locked user" foreach($i in $ccc_Lockeduser) { Write-Host $i.name $lockeduser+=$i } Start-Sleep 5 Search-ADAccount -LockedOut -SearchBase "dc=ccc,dc=yuntcloud,dc=com" -server cccDC1 |Unlock-ADAccount Write-Host "ccc all locked account were unlocked" $lockeduser |Export-Csv -Path C:\get_locked_user\ccc_lockeduser.csv -NoTypeInformation -Encoding utf8 add-Content C:\get_locked_user\locked.txt -Value "ccc Locked user" add-Content C:\get_locked_user\locked.txt -Value $($ccc_Lockeduser|%{$_.name}) #Send-MailMessage -From $nfrom -To $nto -Subject "ccc locked user" -Body "ccc locked user" -Attachments "C:\get_locked_user\ccc_lockeduser.csv" -Credential $cred -SmtpServer mail.yuntcloud.com -Encoding ([System.Text.Encoding]::UTF8) Start-Sleep 3 } $body=get-Content C:\get_locked_user\locked.txt|Out-String if (((Test-Path C:\get_locked_user\yuntcloud_lockeduser.csv) -eq $true) -and ((Test-Path C:\get_locked_user\aaa_lockeduser.csv) -eq $false) -and ((Test-Path C:\get_locked_user\bbb_lockeduser.csv) -eq $false) -and ((Test-Path C:\get_locked_user\ccc_lockeduser.csv) -eq $false)) { Send-MailMessage -From $nfrom -To $nto -Subject "yuntcloud 4 domains all locked user information total" -Body $body -Attachments "C:\get_locked_user\yuntcloud_lockeduser.csv" -Credential $cred -SmtpServer mail.yuntcloud.com -Encoding ([System.Text.Encoding]::UTF8) } elseif (((Test-Path C:\get_locked_user\yuntcloud_lockeduser.csv) -eq $true) -and ((Test-Path C:\get_locked_user\aaa_lockeduser.csv) -eq $true) -and ((Test-Path C:\get_locked_user\bbb_lockeduser.csv) -eq $false) -and ((Test-Path C:\get_locked_user\ccc_lockeduser.csv) -eq $false)) { Send-MailMessage -From $nfrom -To $nto -Subject "yuntcloud 4 domains all locked user information total" -Body $body -Attachments "C:\get_locked_user\yuntcloud_lockeduser.csv","C:\get_locked_user\aaa_lockeduser.csv" -Credential $cred -SmtpServer mail.yuntcloud.com -Encoding ([System.Text.Encoding]::UTF8) } elseif (((Test-Path C:\get_locked_user\yuntcloud_lockeduser.csv) -eq $true) -and ((Test-Path C:\get_locked_user\aaa_lockeduser.csv) -eq $true) -and ((Test-Path C:\get_locked_user\bbb_lockeduser.csv) -eq $true) -and ((Test-Path C:\get_locked_user\ccc_lockeduser.csv) -eq $false)) { Send-MailMessage -From $nfrom -To $nto -Subject "yuntcloud 4 domains all locked user information total" -Body $body -Attachments "C:\get_locked_user\yuntcloud_lockeduser.csv","C:\get_locked_user\aaa_lockeduser.csv","C:\get_locked_user\bbb_lockeduser.csv" -Credential $cred -SmtpServer mail.yuntcloud.com -Encoding ([System.Text.Encoding]::UTF8) } elseif (((Test-Path C:\get_locked_user\yuntcloud_lockeduser.csv) -eq $true) -and ((Test-Path C:\get_locked_user\aaa_lockeduser.csv) -eq $true) -and ((Test-Path C:\get_locked_user\bbb_lockeduser.csv) -eq $true) -and ((Test-Path C:\get_locked_user\ccc_lockeduser.csv) -eq $true)) { Send-MailMessage -From $nfrom -To $nto -Subject "yuntcloud 4 domains all locked user information total" -Body $body -Attachments "C:\get_locked_user\yuntcloud_lockeduser.csv","C:\get_locked_user\aaa_lockeduser.csv","C:\get_locked_user\bbb_lockeduser.csv","C:\get_locked_user\ccc_lockeduser.csv" -Credential $cred -SmtpServer mail.yuntcloud.com -Encoding ([System.Text.Encoding]::UTF8) } else { Send-MailMessage -From $nfrom -To $nto -Subject "yuntcloud 4 domains all locked user information total" -Body $body -Credential $cred -SmtpServer mail.yuntcloud.com -Encoding ([System.Text.Encoding]::UTF8) }
本文出自 “周平的微软技术交流平台” 博客,请务必保留此出处http://yuntcloud.blog.51cto.com/1173839/1945987
以上是关于Powershell管理系列(四十)PowerShell查询和解锁AD账号(改进后,只发一次邮件)的主要内容,如果未能解决你的问题,请参考以下文章
[系统安全] 四十六.Powershell恶意代码检测系列 Powershell基础入门及管道和变量的用法
[系统安全] 四十二.Powershell恶意代码检测系列 论文总结及抽象语法树(AST)提取
[系统安全] 四十三.APT系列Powershell和PowerSploit脚本渗透攻击手段详解