Powershell Enable/Disble AD Accoutns
Hi,
In RDM there are many possibilities, however I am not sure how to achieve the following use case.
I want to access servers with RDP. The associated Active Directory account credentials are in a linked vault.
The AD account should be disabled by default. However, as soon as the account is used for RDP, it should be enabled in AD before connection and disabled again after disconnecting.
The AD account which is authorized to activate this account is also in the vault and should be used by Powershell to authenticate to the AD.
Is there a way to realize this?
Thanks and best regards,
Mike
All Comments (1)
Hello,
Thanks for reaching out.
I think it would be possible, start by looking into your session's property, and get to Events.
From the Before Open Tab, you can Select Script (to load a script) or Powershell if you wish to type it in the box.
You can resolve the username (to enable the account) through the variable $USERNAME$
I think the easiest way to get the credentials for the domain controller is to store them in the Tools section (in session property -> Management Tools -> Tools)
You would have to enable "Allow Passwords in variables" , and accesss these credentials with $TOOL_USERNAME$ and $TOOL_PASSWORD$
Thoughts?
Best regards,
Alex Belisle
