PC Professionell 2006 May

home *** CD-ROM | disk | FTP | other *** search

/ PC Professionell 2006 May / PCpro_2006_05.ISO / files / free_security / msshared / Shared_Computer_Toolkit_ENU.msi / FileScripts016 < prev next >

Wrap

Extensible Markup Language | 2005-09-02 | 17.2 KB | 279 lines

■<?xml version="1.0" ?> <package> <comment> ' *** ' *** ------------------------------------------------------------------------------ ' *** Filename: Accounts.wsf ' *** ------------------------------------------------------------------------------ ' *** Description: Allows for quick enabling/disabling of accounts ' *** ------------------------------------------------------------------------------ ' *** Version: 1.0 ' *** Notes: ' *** ------------------------------------------------------------------------------ ' *** Copyright (C) Microsoft Corporation 2005, All Rights Reserved ' *** ------------------------------------------------------------------------------ ' *** </comment> <job> <runtime> <description>Allows for quick enabling/disabling of accounts</description> <named name="Enable" required="false" many="false" helpstring="Enables a local account" /> <named name="Disable" required="false" many="false" helpstring="Disables a local account" /> <named name="List" required="false" many="false" helpstring="Lists local accounts and their status" />  <usage> Accounts Tool Usage: Accounts.wsf [/Enable:username] [/Disable:username] [/List] Options : Enable : Enables a local account. Disable : Disables a local account. List : Lists local accounts and their status. Example : Accounts.wsf /Disable:username </usage> </runtime> <resource id="CScriptMessage">Restarting script in command-line mode. Run CmdOn.BAT to set command-line mode as the default mode.</resource> <resource id="CScriptTitle">Shared Computer Toolkit: Windows Script Mode Detected</resource> <?job error="True" debug="False" ?> <script language="VBScript" src="../include/Common.vbs"></script> <script language="VBScript" src="../include/libWSF.vbs"></script> <script language="VBScript" src="../include/clsLogging.vbs"></script> <script language="VBScript"> <![CDATA[ ' ~~~ ' ~~~ Force variables to be declared ' ~~~ Option Explicit ' ~~~ Call the Main Sub Call Main("") ' ~~~ ' ~~~ Declare variables and constants ' ~~~ Dim sAppDir, bOK Dim colItems, oItem, sInstaller, oUser, sUser sAppDir = RegRead(TOOLKITKEY & "TargetDir") sInstaller = RegRead(TOOLKITKEY & "SCTInstaller") ' ~~~ ------------------------------------------------------------------------------ ' ~~~ Check script usage ' ~~~ ------------------------------------------------------------------------------ ' ~~~ Assume usage is ok bOK = True ' ~~~ Simple checks for incorrect usage Select Case WScript.Arguments.Named.Count Case 0 ' ~~~ Cannot call without parameters bOK = False End Select If Not(WScript.Arguments.Named.Exists("Enable")) and Not(WScript.Arguments.Named.Exists("Disable")) and Not(WScript.Arguments.Named.Exists("List")) Then bOK = False End If ' ~~~ If incorrect usage display message and quit If Not(bOK) Then WScript.Arguments.ShowUsage QuitScript() End If ' ~~~ List Accounts If WScript.Arguments.Named.Exists("List") Then Call ListAccounts End If ' ~~~ Enable Account If WScript.Arguments.Named.Exists("Enable") Then sUser = WScript.Arguments.Named("Enable") Call EnableUser End If ' ~~~ Disable Account If WScript.Arguments.Named.Exists("Disable") Then sUser = WScript.Arguments.Named("Disable") Call DisableUser End If ' ~~~ Destroy objects UnLoadObjects() ' *** ' *** ------------------------------------------------------------------------------ ' *** Name: IsInvalidAccount ' *** ------------------------------------------------------------------------------ ' *** Purpose: Determines which accounts can be modified or listed ' *** ------------------------------------------------------------------------------ ' *** Function IsInvalidAccount Dim oAccount IsInValidAccount = False Select Case UCase(oItem.Name) Case "HELPASSISTANT" IsInValidAccount = True Case "ASPNET" IsInValidAccount = True Case "SUPPORT_388945A0" IsInValidAccount = True Case "SQLDEBUGGER" IsInValidAccount = True Case "ACTUSER" IsInValidAccount = True Case "IUSR_" & UCase(oNetwork.ComputerName) IsInValidAccount = True Case "IWAM_" & UCase(oNetwork.ComputerName) IsInValidAccount = True Case "VUSR_" & UCase(oNetwork.ComputerName) IsInValidAccount = True Case UCase(oNetwork.UserName) IsInValidAccount = True Case oNetwork.UserName IsInValidAccount = True Case sInstaller IsInValidAccount = True End Select Set oAccount = oWMIService.Get("Win32_UserAccount.Name='" & oItem.Name & "',Domain='" & oNetwork.ComputerName & "'") If Right( oAccount.SID , 4 ) = "-500" Then ' ~~~ Administrator account IsInValidAccount = True ElseIf Right( oAccount.SID , 4 ) = "-501" Then ' ~~~ Guest account IsInValidAccount = True End If Set oAccount = nothing End Function ' *** ' *** ------------------------------------------------------------------------------ ' *** Name: EnableUser ' *** ------------------------------------------------------------------------------ ' *** Purpose: Enables the specified account... ' *** account can login and, and will appear on Windows Welcome ' *** ------------------------------------------------------------------------------ ' *** Sub EnableUser Set colItems = oWMIService.ExecQuery _ ("Select * from Win32_UserAccount Where LocalAccount = True") For Each oItem in colItems If Not(IsInvalidAccount()) and LCase(oItem.Name) = LCase(sUser) then Set oUser = GetObject("WinNT://./" & oItem.Name) oUser.AccountDisabled = False oUser.setinfo Wscript.Echo Wscript.Echo "Account: " & sUser & " is now enabled." Wscript.Echo Exit Sub End If Next Set colItems = nothing Set oItem = nothing Set oUser = nothing Wscript.Echo Wscript.Echo "Account: " & sUser & " does not exist or cannot be enabled using this tool." Wscript.Echo End Sub ' *** ' *** ------------------------------------------------------------------------------ ' *** Name: DisableUser ' *** ------------------------------------------------------------------------------ ' *** Purpose: Disables the specified account... ' *** account cannot login and, and will not appear on Windows Welcome ' *** ------------------------------------------------------------------------------ ' *** Sub Disableuser Set colItems = oWMIService.ExecQuery _ ("Select * from Win32_UserAccount Where LocalAccount = True") For Each oItem in colItems If Not(IsInvalidAccount()) and LCase(oItem.Name) = LCase(sUser) then Set oUser = GetObject("WinNT://./" & oItem.Name) oUser.AccountDisabled = True oUser.setinfo Wscript.Echo Wscript.Echo "Account: " & sUser & " is now disabled." Wscript.Echo Exit Sub End If Next Set colItems = nothing Set oItem = nothing Set oUser = nothing Wscript.Echo Wscript.Echo "Account: " & sUser & " does not exist or cannot be disabled using this tool." Wscript.Echo End Sub ' *** ' *** ------------------------------------------------------------------------------ ' *** Name: ListAccounts ' *** ------------------------------------------------------------------------------ ' *** Purpose: List local accounts and their status: Enabled/Disabled ' *** ------------------------------------------------------------------------------ ' *** Sub ListAccounts Dim sStatus Set colItems = oWMIService.ExecQuery _ ("Select * from Win32_UserAccount Where LocalAccount = True") Wscript.Echo Wscript.Echo "Local accounts and their status:" Wscript.Echo For Each oItem in colItems If Not(IsInvalidAccount()) then Set oUser = GetObject("WinNT://./" & oItem.Name) If oUser.AccountDisabled then sStatus = "Disabled" Else sStatus = "Enabled" End If Wscript.Echo Wscript.Echo "Account: " & oItem.Name Wscript.Echo "Status : " & sStatus End If Next Set colItems = nothing Set oItem = nothing Set oUser = nothing Wscript.Echo QuitScript() End Sub ]]> </script> </job> </package>