Custom Actions for Users

novasam · ‎07-04-2009

I would like to see the option to add custom actions for users.

We could write scripts to unlock AD user accounts, reset a user password, ect...

It would make the product more of a one stop shop for helpdesk. Also a link on the dashboard that lists the number of users that have activly logged into computers, much like the link for computers.

Everything else looks good. I have a number of scripts and complide programs I have been using with lansweeper, this addition would be a great and probably simple addition to this program.

i_kulgu · ‎09-15-2009

You can also use "Active Directory Users and Computers".
The name of the tool is : dsa.msc.
You can open with this your AD. control panel from your computer.

http://www.mijnbestand.nl/Bestand-ULQVDHG6E7NI.rar

This is the link to the file. If you need other tools for AD, just tell me ..

Regards,

I.Kulgu

Hemoco · ‎09-14-2009

We're thinking about an "all in one" premium tool.
Let us know which other suggestions you have.

i_kulgu · ‎08-18-2009

Identifies whether or not a user is allowed to change his or her password.

Const ADS_ACETYPE_ACCESS_DENIED_OBJECT = &H6
Const CHANGE_PASSWORD_GUID  = _
   "{ab721a53-1e2f-11d0-9819-00aa0040529b}"

Set objUser = GetObject _
  ("LDAP://cn=myerken,ou=management,dc=fabrikam,dc=com")
Set objSD = objUser.Get("nTSecurityDescriptor")
Set objDACL = objSD.DiscretionaryAcl

For Each Ace In objDACL
    If ((Ace.AceType = ADS_ACETYPE_ACCESS_DENIED_OBJECT) And _
        (LCase(Ace.ObjectType) = CHANGE_PASSWORD_GUID)) Then
            blnEnabled = True
    End If
Next

If blnEnabled Then
    WScript.Echo "The user cannot change his or her password."
Else
    WScript.Echo "The user can change his or her password."
End If

i_kulgu · ‎08-18-2009

Sample script for password expire.

Const SEC_IN_DAY = 86400
Const ADS_UF_DONT_EXPIRE_PASSWD = &h10000
 
Set objUserLDAP = GetObject _
  ("LDAP://CN=myerken,OU=management,DC=fabrikam,DC=com")
intCurrentValue = objUserLDAP.Get("userAccountControl")
 
If intCurrentValue and ADS_UF_DONT_EXPIRE_PASSWD Then
    Wscript.Echo "The password does not expire."
Else
    dtmValue = objUserLDAP.PasswordLastChanged 
    Wscript.Echo "The password was last changed on " & _
        DateValue(dtmValue) & " at " & TimeValue(dtmValue) & VbCrLf & _
            "The difference between when the password was last set" &  _
                "and today is " & int(now - dtmValue) & " days"
    intTimeInterval = int(now - dtmValue)
  
    Set objDomainNT = GetObject("WinNT://fabrikam")
    intMaxPwdAge = objDomainNT.Get("MaxPasswordAge")
    If intMaxPwdAge < 0 Then
        WScript.Echo "The Maximum Password Age is set to 0 in the " & _
            "domain. Therefore, the password does not expire."
    Else
        intMaxPwdAge = (intMaxPwdAge/SEC_IN_DAY)
        Wscript.Echo "The maximum password age is " & intMaxPwdAge & " days"
        If intTimeInterval >= intMaxPwdAge Then
          Wscript.Echo "The password has expired."
        Else
          Wscript.Echo "The password will expire on " & _
              DateValue(dtmValue + intMaxPwdAge) & " (" & _
                  int((dtmValue + intMaxPwdAge) - now) & " days from today" & _
                      ")."
        End If
    End If
End If

i_kulgu · ‎08-18-2009

Sample script for unlocking account.

Set objUser = GetObject _
    ("LDAP://cn=MyerKen,ou=Management,dc=NA,dc=fabrikam,dc=com")

objUser.IsAccountLocked = False
objUser.SetInfo

Hemoco · ‎08-18-2009

Please post any tools or scripts that you want to see included.

Hemoco · ‎07-04-2009

novasam wrote:
I would like to see the option to add custom actions for users.

We could write scripts to unlock AD user accounts, reset a user password, ect...

Good idea.

Custom Actions for Users

New to Lansweeper?

Try Lansweeper For Free