带有任务计划程序的Powershell脚本不起作用
问题描述 投票:0回答:1
我创建了一个 PowerShell 脚本,如果检测到新用户帐户添加到我们 AD 中的域管理组,则会通过电子邮件发送。当我运行 PowerShell 窗口时它可以工作,但确实会抛出错误。我正在尝试自动化并每 5 分钟运行一次,直到通过域控制器上的任务计划程序将用户从域管理员组中删除。下面是我的代码,下面是它抛出的错误,但正如之前提到的,它在通过 PowerShell 窗口运行时确实成功运行。
PowerShell 脚本
#Enter the list of approved admin accounts.
#Domain admin accounts
$domainAdminsList = "Administrator", "Admin2", "admin3"
#Get the members of the "Domain Admins" group
$actualAdmins = Get-ADGroupMember -Identity "Domain Admins" | Select-Object -ExpandProperty SamAccountName
$adminsList = $domainAdminsList
$accountType = "Domain"
#Compare the admin accounts vs the adminsList, and if an account exists then add it to $rogueAdmins
$actualAdmins | ForEach-Object {
$adminName = $_
$matchFound = $false
foreach ($account in $adminsList) {
if ($adminName -like $account) {
$matchFound = $true
break
}
}
if (-not $matchFound) {
$rogueAdmins += $adminName
}
else {
$goodAdmins += $adminName
}
}
if ($rogueAdmins.count -gt 0) {
# Import the required module for this script
#Import-Module MSOnline
# Your credentials
$User = "email account"
$Credential = Get-StoredCredential -Target "stored email"
$UserCredential = New-Object -TypeName System.Management.Automation.PSCredential -ArgumentList $User, $Credential.Password
# Create a session
$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://outlook.office365.com/powershell-liveid/ -Credential $UserCredential -Authentication Basic -AllowRedirection
# Import the session
Import-PSSession $Session -DisableNameChecking
# Email details
$EmailTo = "[email protected]"
$EmailFrom = "[email protected]"
$Subject = "ALERT: The Domain Admins group has been modified"
$Body = "A new user has been added or removed from the Domain Admin user's group. Please confirm this is a legitimate change and not malicious by checking the Domain Admin group for the user: $rogueAdmins. This message will repeat every 5 minutes until this has been resolved."
$SMTPServer = "smtp.office365.com"
$SMTPPort = "587"
# Send the email
Send-MailMessage -To $EmailTo -From $EmailFrom -Subject $Subject -Body $Body -SmtpServer $SMTPServer -port $SMTPPort -UseSsl -Credential $UserCredential
# Remove the session
Remove-PSSession $Session
exit 1
}
else {
Write-Output "Good news! The $accountType Admins group only contains these approved users:"
$goodAdmins
exit
}
它抛出的错误
New-PSSession : [outlook.office365.com] Connecting to remote server outlook.office365.com failed with the following error message : The WinRM client received an HTTP server error status (500), but the
remote service did not include any other information about the cause of the failure. For more information, see the about_Remote_Troubleshooting Help topic.
At C:\1st_setup\Scripts\admin-check2.ps1:46 char:12
+ $Session = New-PSSession -ConfigurationName Microsoft.Exchange -Conne ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : OpenError: (System.Manageme....RemoteRunspace:RemoteRunspace) [New-PSSession], PSRemotingTransportException
+ FullyQualifiedErrorId : WinRMHttpError,PSSessionOpenFailed
Import-PSSession : Cannot validate argument on parameter 'Session'. The argument is null. Provide a valid value for the argument, and then try running the command again.
At C:\1st_setup\Scripts\admin-check2.ps1:49 char:18
+ Import-PSSession $Session -DisableNameChecking
+ ~~~~~~~~
+ CategoryInfo : InvalidData: (:) [Import-PSSession], ParameterBindingValidationException
+ FullyQualifiedErrorId : ParameterArgumentValidationError,Microsoft.PowerShell.Commands.ImportPSSessionCommand
Remove-PSSession : Cannot validate argument on parameter 'Id'. The argument is null. Provide a valid value for the argument, and then try running the command again.
At C:\1st_setup\Scripts\admin-check2.ps1:63 char:18
+ Remove-PSSession $Session
+ ~~~~~~~~
+ CategoryInfo : InvalidData: (:) [Remove-PSSession], ParameterBindingValidationException
+ FullyQualifiedErrorId : ParameterArgumentValidationError,Microsoft.PowerShell.Commands.RemovePSSessionComman
任务计划程序历史记录显示它正在运行,但随后它一直挂起并且没有任何反应。就好像被卡住了一样。下面我包含了任务计划程序设置的图像。
我已经尝试调整任务计划程序设置,以在它继续运行时强制停止,但它仍然继续运行。我也使用过不同的帐户,也出现了同样的问题。目前它正在使用我的域管理员帐户来获取任务计划程序权限。如果有人知道如何让它每 5 分钟运行一次,我将不胜感激。谢谢!
1个回答
0
投票
投票
您需要调用 PowerShell 作为程序/脚本,并将脚本文件规范放入“添加参数(可选):”框中。
以下是下图中选项的全文: -WindowStyle隐藏-命令“G:\ BEKDocs \ Scripts \ Production \ CMsLocalPCInfo.ps1
最新问题
- 如何在Python中通过OR-Tools使用sorted()和min()函数?
- 来自 openai python SDK 的 AsyncAzureOpenAI 客户端支持自定义快速 API 端点
- 如果我想使用过去/未来数百万年的日期和时间,我该怎么做?
- 使用 docker-compose 进行 LangGraph 部署
- 如何使用 WebDriver Sampler (JMeter) 中的 JMeter 属性 props.get props.put
- 从 winit 获取 windows-rs HWND?
- 迭代所有用户 - firestore
- Python 2 中对象和实例之间的区别?
- 如何使用 PyMuPDF 将 unicode 文本插入 PDF?
- 使用多个 PDF 矢量数据库从一个 PDF 中检索信息
- 在连接中使用字符串值和 CONCAT 作为表名
- 在 ubuntu 23.04 或任何非 LTS 版本中安装 Cloudflare warp cli 存在问题 [已关闭]
- 使用列作为带有 concat 的表连接
- 画布未扩展以占据 tkinter 中窗口的整个宽度
- 数据库查询的内部实现
- “dotnet ef”命令在 .NET Core 2.2 中不起作用
- 当我运行且相机在 Roblox Studio 中编写脚本时,部分会被删除
- 隐藏页面中的 FullCalendar SchedulerLicenseKey
- 根据另一个表的结果从一个表中选择计数
- Python 子进程仅在 cron 中返回非零退出状态
© www.soinside.com 2019 - 2024. All rights reserved.