├── README.md
├── FSRM
    ├── RansomwareBlockSmb
    │   ├── StartRansomwareBlockSmb.cmd
    │   └── RansomwareBlockSmb.ps1
    ├── Copy-FSRMFolder.ps1
    ├── Update-FSRMServer.ps1
    └── New-FSRMServer.ps1
├── Intune
    ├── Assign-AutoPilotDevice
    │   ├── GroupTags.txt
    │   ├── Assign-AutoPilotDevice.bat
    │   └── Assign-AutoPilotDevice.ps1
    └── Set-IntuneDeviceManangementScriptAssignment.ps1
├── ConfigMgr
    ├── Invoke-CMCimFunctions.ps1
    ├── Read-CMLog.ps1
    ├── Test-CMMPUrl.ps1
    └── New-CMMaintenanceWindow.ps1
└── Other
    ├── Template-Logging.ps1
    ├── Backup_TechNet_Gallery_Contributions_Category.ps1
    └── Get-EdgeEnterpriseMSI.ps1


/README.md:
--------------------------------------------------------------------------------
1 | # PowerShell


--------------------------------------------------------------------------------
/FSRM/RansomwareBlockSmb/StartRansomwareBlockSmb.cmd:
--------------------------------------------------------------------------------
1 | powershell -noexit "& ""C:\RansomwareBlockSmb\RansomwareBlockSmb.ps1"""
2 | 


--------------------------------------------------------------------------------
/Intune/Assign-AutoPilotDevice/GroupTags.txt:
--------------------------------------------------------------------------------
1 | AutoPilot-VM=AutoPilot-VM
2 | Friendly name=TAG002
3 | This is another GroupTag=TAG003


--------------------------------------------------------------------------------
/Intune/Assign-AutoPilotDevice/Assign-AutoPilotDevice.bat:
--------------------------------------------------------------------------------
1 | Powershell.exe -executionpolicy unrestricted -File %~dp0Assign-AutoPilotDevice.ps1


--------------------------------------------------------------------------------
/FSRM/Copy-FSRMFolder.ps1:
--------------------------------------------------------------------------------
 1 | 
 2 | $ScriptSourcePath = "\\servername\FSRM\RansomwareBlockSmb"
 3 | [array]$servers = "<FSRMServer1>","<FSRMServer2>"
 4 | 
 5 | foreach($server in $servers)
 6 | {
 7 |     try
 8 |     {
 9 |         Copy-Item $ScriptSourcePath "\\$server\c$" -recurse -Force
10 |         Write-Host "RansomwareBlockSmb folder copied to \\$server\c$\"
11 |     }
12 |     catch
13 |     {
14 |         Write-Host $_.Exception.Message
15 |     }
16 |  }


--------------------------------------------------------------------------------
/ConfigMgr/Invoke-CMCimFunctions.ps1:
--------------------------------------------------------------------------------
  1 | <#
  2 | .SYNOPSIS
  3 |   Functions for using Cim instance and methods with ConfigMgr
  4 | 
  5 | .DESCRIPTION
  6 |   Examples how to use Invoke-CimMethod with Configuration Manager to add or remove a direct collection member
  7 | 
  8 | .NOTES
  9 |   Version:        1.0
 10 |   Author:         Mattias Benninge
 11 |   Creation Date:  2023-04-02
 12 |   Purpose/Change: Initial script development
 13 | 
 14 | .EXAMPLE
 15 |     Gets a Computer object using Get-CimInstance
 16 |     $CMResource = Get-CMCimClient -CMServerFQDN CM01.corp.mblab.org -SiteCode PS1 -ComputerName "COMPUTER01"
 17 | 
 18 | .EXAMPLE
 19 |     Gets a Collection object using Get-CimInstance
 20 |     $CMCollection = Get-CMCimCollection -CMServerFQDN CM01.corp.mblab.org -SiteCode PS1 -CollectionID 'PS100015'
 21 | 
 22 | .EXAMPLE
 23 |     Adds a direct membership rule using Invoke-CimMethod
 24 |     Add-CMCimDirectMembershipRule -Collection $CMCollection -Resource $CMResource
 25 | 
 26 | .EXAMPLE
 27 |     Removes a direct membership rule using Invoke-CimMethod
 28 |     Remove-CMCimDirectMembershipRule -Collection $CMCollection -ResourceID $CMResource.ResourceId
 29 | #>
 30 | 
 31 | function Get-CMCimClient {
 32 | param (
 33 |     [Parameter(Mandatory = $true)]
 34 |     [string]$CMServerFQDN,
 35 |     [Parameter(Mandatory = $true)]
 36 |     [string]$SiteCode,
 37 |     [Parameter(Mandatory = $true)]
 38 |     [string]$ComputerName
 39 | )
 40 |     [array]$resource = Get-CimInstance -ComputerName $CMServerFQDN -Namespace "ROOT\SMS\Site_$SiteCode" -ClassName "SMS_R_System" -Filter "Name = '$ComputerName'"
 41 |     If ($resource) {
 42 |         If ($resource.Count -eq 1) {
 43 |             return $resource
 44 |         }
 45 |         else {
 46 |             Write-Error -Message "Multiple resources found matching name $client =  $($resource -join ",")" -LogLevel 3
 47 |             return $null
 48 |         }
 49 |     }
 50 | }
 51 | 
 52 | function Get-CMCimCollection {
 53 | param (
 54 |     [Parameter(Mandatory = $true)]
 55 |     [string]$CMServerFQDN,
 56 |     [Parameter(Mandatory = $true)]
 57 |     [string]$SiteCode,
 58 |     [Parameter(Mandatory = $true)]
 59 |     [string]$CollectionID
 60 | )
 61 | 
 62 |     $Collection = Get-CimInstance -ComputerName $CMServerFQDN -Namespace "ROOT\SMS\Site_$SiteCode" -ClassName "SMS_Collection" -Filter "CollectionID = '$CollectionID'"
 63 |     return $Collection
 64 | }
 65 | 
 66 | 
 67 | function Add-CMCimDirectMembershipRule {
 68 | param (
 69 |     $Collection,
 70 |     [Parameter(Mandatory = $true)]
 71 |     $Resource
 72 | )
 73 | 
 74 | $null = New-CimInstance -Namespace "ROOT\SMS\Site_PS1" -OutVariable collectionRule -ClassName SMS_CollectionRuleDirect -ClientOnly -Property @{
 75 |            ResourceClassName = [string]"SMS_R_System"
 76 |            RuleName          = [string]$Resource.Name
 77 |            ResourceID        = [uint32]$Resource.ResourceID
 78 |        }
 79 | 
 80 |     Invoke-CimMethod -InputObject $Collection -MethodName AddMemberShipRule -Arguments @{ CollectionRule = [CimInstance]$collectionRule[0] } -ErrorAction Stop
 81 | 
 82 | }
 83 | 
 84 | function Remove-CMCimDirectMembershipRule {
 85 | param (
 86 |     [Parameter(Mandatory = $true)]
 87 |     $Collection,
 88 |     [Parameter(Mandatory = $true)]
 89 |     [uint32]$ResourceID
 90 | )
 91 | 
 92 |     [ciminstance[]]$collRules = Get-CimInstance -InputObject $Collection | Select-Object -ExpandProperty  CollectionRules
 93 |     Foreach ($rule in $collRules) { 
 94 |         If ($rule.CimClass.CimClassName -eq  "SMS_CollectionRuleDirect") {
 95 |             If($rule.ResourceID -eq "16777225")
 96 |             {
 97 |                 $params = @{ collectionRule = $rule }
 98 |                 Invoke-CimMethod -InputObject $Collection -MethodName DeleteMembershipRule -Arguments $params -ErrorAction Stop
 99 |             }
100 |         }
101 |     }
102 | }
103 | 


--------------------------------------------------------------------------------
/FSRM/RansomwareBlockSmb/RansomwareBlockSmb.ps1:
--------------------------------------------------------------------------------
  1 | <#
  2 | .SYNOPSIS
  3 |   RansomwareBlockSmb
  4 | 
  5 | .DESCRIPTION
  6 |   Script that runs when a custom command is triggered on a FSRM server. It will block the bad user on SMBShare Level
  7 | 
  8 |   The script requires PowerShell 4.0 or later to work.
  9 | 
 10 | .NOTES
 11 |   Version:        1.0
 12 |   Author:         Mattias Benninge
 13 |   Creation Date:  2017-05-03
 14 |   Purpose/Change: Initial script development
 15 | 
 16 | .EXAMPLE
 17 | 
 18 | #>
 19 | 
 20 | #region ---------------------------------------------------[Declarations]----------------------------------------------------------
 21 | 
 22 | #Any Global Declarations go here
 23 | $maxlogfilesize = 5Mb
 24 | 
 25 | #endregion
 26 | #region ---------------------------------------------------[Functions]------------------------------------------------------------
 27 | 
 28 | #region Logging: Functions used for Logging, do not edit!
 29 | Function Start-Log{
 30 | [CmdletBinding()]
 31 |     param (
 32 |         [ValidateScript({ Split-Path $_ -Parent | Test-Path })]
 33 | 	    [string]$FilePath
 34 |     )
 35 | 	
 36 |     try
 37 |     {
 38 |         if (!(Test-Path $FilePath))
 39 | 	    {
 40 | 	        ## Create the log file
 41 | 	        New-Item $FilePath -Type File | Out-Null
 42 | 	    }
 43 | 		
 44 | 	    ## Set the global variable to be used as the FilePath for all subsequent Write-Log
 45 | 	    ## calls in this session
 46 | 	    $global:ScriptLogFilePath = $FilePath
 47 |     }
 48 |     catch
 49 |     {
 50 |         Write-Error $_.Exception.Message
 51 |     }
 52 | }
 53 | 
 54 | Function Write-Log{
 55 | param (
 56 |     [Parameter(Mandatory = $true)]
 57 |     [string]$Message,
 58 | 		
 59 |     [Parameter()]
 60 |     [ValidateSet(1, 2, 3)]
 61 |     [int]$LogLevel = 1
 62 |     )    
 63 |     $TimeGenerated = "$(Get-Date -Format HH:mm:ss).$((Get-Date).Millisecond)+000"
 64 |     $Line = '<![LOG[{0}]LOG]!><time="{1}" date="{2}" component="{3}" context="" type="{4}" thread="" file="">'
 65 |     
 66 |     if($MyInvocation.ScriptName){
 67 |         $LineFormat = $Message, $TimeGenerated, (Get-Date -Format MM-dd-yyyy), "$($MyInvocation.ScriptName | Split-Path -Leaf):$($MyInvocation.ScriptLineNumber)", $LogLevel
 68 |     }
 69 |     else { #if the script havn't been saved yet and does not have a name this will state unknown.
 70 |         $LineFormat = $Message, $TimeGenerated, (Get-Date -Format MM-dd-yyyy), "Unknown", $LogLevel
 71 |     }
 72 |     $Line = $Line -f $LineFormat
 73 | 
 74 |     #Make sure the logfile do not exceed the $maxlogfilesize
 75 |     if (Test-Path $ScriptLogFilePath) { 
 76 |         if((Get-Item $ScriptLogFilePath).length -ge $maxlogfilesize){
 77 |             If(Test-Path "$($ScriptLogFilePath.Substring(0,$ScriptLogFilePath.Length-1))_")
 78 |             {
 79 |                 Remove-Item -path "$($ScriptLogFilePath.Substring(0,$ScriptLogFilePath.Length-1))_" -Force
 80 |             }
 81 |             Rename-Item -Path $ScriptLogFilePath -NewName "$($ScriptLogFilePath.Substring(0,$ScriptLogFilePath.Length-1))_" -Force
 82 |         }
 83 |     }
 84 | 
 85 |     Add-Content -Value $Line -Path $ScriptLogFilePath
 86 | 
 87 | }
 88 | #endregion
 89 | 
 90 | # Add functions Here
 91 | 
 92 | 
 93 | #endregion
 94 | #-----------------------------------------------------------[Execution]------------------------------------------------------------
 95 | #Default logging to %temp%\scriptname.log, change if needed.
 96 | Start-Log -FilePath "C:\RansomwareBlockSmb\RansomWareBlockSmbLog.log"
 97 | # Syntax is:
 98 | # Loglevel 1 is default and does not need to be specified
 99 | # Write-Log -Message "<message goes here>"
100 | # Write-Log -Message "<message goes here>" -LogLevel 2
101 | 
102 | #Script Execution goes here
103 | $shares = get-WmiObject -class Win32_Share |Where-Object {$_.Description -ne "Default Share" -and $_.Description -ne "Remote IPC"}
104 | $events = Get-WinEvent -FilterHashtable @{logname='Application';providername='SRMSVC';StartTime=(get-date).AddMinutes(-2)}
105 | 
106 | foreach ($Event in $Events)
107 | {
108 |     $MsgArray = $Event.Message -split ";"
109 |     $BadUser = $MsgArray[0]
110 |     $BadFile = $MsgArray[1]
111 |     $Rule = $MsgArray[2]
112 |     
113 |     #Match filepath against local share
114 |     foreach($share in $shares){
115 |         $sPath = [regex]::escape("$($share.Path)")
116 |         if($BadFile -match $sPath)
117 |         {
118 |             $SharePart = $share.Name
119 |         }
120 |     }
121 | 
122 |     if ($Rule -match "Ransomware_Extensions")
123 |     {
124 |         try{
125 |             Block-SmbShareAccess -Name $SharePart -AccountName $BadUser -Force
126 |             }
127 |             catch
128 |             {
129 |                 Write-Log -Message $_.Exception.Message -LogLevel 3
130 |             }
131 | 				                       
132 |         Write-Log -Message "$BadUser;$SharePart;$BadFile"
133 |                     
134 | 
135 |     }
136 |     else{exit}
137 | }


--------------------------------------------------------------------------------
/Other/Template-Logging.ps1:
--------------------------------------------------------------------------------
  1 | <#
  2 | .SYNOPSIS
  3 |   <Script Name>
  4 | 
  5 | .DESCRIPTION
  6 |   <Brief description of script>
  7 | 
  8 | .PARAMETER <Parameter_Name>
  9 |   <Brief description of parameter input required. Repeat this attribute if required>
 10 | 
 11 | .INPUTS
 12 |   <Inputs if any, otherwise state None>
 13 | 
 14 | .OUTPUTS
 15 |   <Outputs if any, otherwise state None>
 16 | 
 17 | .NOTES
 18 |   Version:        1.0
 19 |   Author:         <Name>
 20 |   Creation Date:  <Date>
 21 |   Purpose/Change: Initial script development
 22 | 
 23 | .EXAMPLE
 24 |   <Example explanation goes here>
 25 |   
 26 |   <Example goes here. Repeat this attribute for more than one example>
 27 | #>
 28 | <#
 29 | #Requires -RunAsAdministrator
 30 | #Requires -Version <N>[.<n>] 
 31 | #Requires –PSSnapin <PSSnapin-Name> [-Version <N>[.<n>]]
 32 | #Requires -Modules { <Module-Name> | <Hashtable> } 
 33 | #Requires –ShellId <ShellId>
 34 | #>
 35 | #region --------------------------------------------------[Script Parameters]------------------------------------------------------
 36 | 
 37 | Param (
 38 |   [switch]$verbose
 39 |   # Additiona Script parameters go here
 40 |   #	,[parameter(Mandatory=$true)]
 41 |   # [string]$string1
 42 |   # ,[parameter(Mandatory=$true)]
 43 |   # [string]$string2
 44 | )
 45 | 
 46 | #endregion -----------------------------------------------[Script Parameters]------------------------------------------------------
 47 | #region --------------------------------------------------[Initialisations]--------------------------------------------------------
 48 | 
 49 | #Set Error Action to Silently Continue
 50 | #$ErrorActionPreference = 'SilentlyContinue'
 51 | 
 52 | #Import Modules & Snap-ins
 53 | #endregion -----------------------------------------------[Initialisations]--------------------------------------------------------
 54 | #region --------------------------------------------------[Declarations]-----------------------------------------------------------
 55 | 
 56 | #Any Global Declarations go here
 57 | $maxlogfilesize = 5Mb
 58 | try {
 59 |   $Verbose = $PSCmdlet.MyInvocation.BoundParameters["Verbose"].IsPresent
 60 | }
 61 | catch {}
 62 | 
 63 | 
 64 | #endregion -----------------------------------------------[Declarations]-----------------------------------------------------------
 65 | #region --------------------------------------------------[Functions]--------------------------------------------------------------
 66 | 
 67 | #region Logging: Functions used for Logging, do not edit!
 68 | Function Start-Log {
 69 |   [CmdletBinding()]
 70 |   param (
 71 |     [ValidateScript({ Split-Path $_ -Parent | Test-Path })]
 72 |     [string]$FilePath
 73 |   )
 74 | 
 75 |   try {
 76 |     if (!(Test-Path $FilePath)) {
 77 |       ## Create the log file
 78 |       $filepath = (New-Item $FilePath -Type File).FullName
 79 |     }
 80 |     else {
 81 |       $FilePath = (Get-Item $FilePath).FullName
 82 |     }
 83 |   
 84 |     ## Set the global variable to be used as the FilePath for all subsequent Write-Log
 85 |     ## calls in this session
 86 |     $global:ScriptLogFilePath = $FilePath
 87 |     [int32]$LogTimeZoneBiasInt = [timezone]::CurrentTimeZone.GetUtcOffset([datetime]::Now).TotalMinutes
 88 |     if ($LogTimeZoneBiasInt -ge 0) {
 89 |       [string]$script:LogTimeZoneBias = "+{0:D3}" -f $LogTimeZoneBiasInt
 90 |     }
 91 |     else {
 92 |       [string]$script:LogTimeZoneBias = "{0:D3}" -f $LogTimeZoneBiasInt
 93 |     }
 94 |   }
 95 |   catch {
 96 |     Write-Error $_.Exception.Message
 97 |   }
 98 | }
 99 | 
100 | Function Write-Log {
101 |   param (
102 |     [Parameter(Mandatory = $true)]
103 |     [string]$Message,
104 |   
105 |     [Parameter()]
106 |     [ValidateSet(1, 2, 3)]
107 |     [int]$LogLevel = 1
108 |   )    
109 |   [string]$LogTime = (Get-Date -Format 'HH:mm:ss.fff').ToString()
110 |   [string]$TimeGenerated = $LogTime + $script:LogTimeZoneBias
111 |   $Line = '<![LOG[{0}]LOG]!><time="{1}" date="{2}" component="{3}" context="" type="{4}" thread="" file="">'
112 |   
113 |   if ($MyInvocation.ScriptName) {
114 |     $LineFormat = $Message, $TimeGenerated, (Get-Date -Format MM-dd-yyyy), "$($MyInvocation.ScriptName | Split-Path -Leaf):$($MyInvocation.ScriptLineNumber)", $LogLevel
115 |   }
116 |   else {
117 |     #if the script havn't been saved yet and does not have a name this will state unknown.
118 |     $LineFormat = $Message, $TimeGenerated, (Get-Date -Format MM-dd-yyyy), "Unknown", $LogLevel
119 |   }
120 |   $Line = $Line -f $LineFormat
121 | 
122 |   If ($Verbose) {
123 |     switch ($LogLevel) {
124 |       2 { $TextColor = "Yellow" }
125 |       3 { $TextColor = "Red" }
126 |       Default { $TextColor = "Gray" }
127 |     }
128 |     Write-Host -nonewline -f $TextColor "$Message`r`n" 
129 |   }
130 | 
131 |   #Make sure the logfile do not exceed the $maxlogfilesize
132 |   if (Test-Path $ScriptLogFilePath) { 
133 |     if ((Get-Item $ScriptLogFilePath).length -ge $maxlogfilesize) {
134 |       If (Test-Path "$($ScriptLogFilePath.Substring(0,$ScriptLogFilePath.Length-1))_") {
135 |         Remove-Item -path "$($ScriptLogFilePath.Substring(0,$ScriptLogFilePath.Length-1))_" -Force
136 |       }
137 |       Rename-Item -Path $ScriptLogFilePath -NewName "$($ScriptLogFilePath.Substring(0,$ScriptLogFilePath.Length-1))_" -Force
138 |     }
139 |   }
140 | 
141 |   $stream = [System.IO.StreamWriter]::new($ScriptLogFilePath, $true, ([System.Text.Utf8Encoding]::new()))
142 |   $stream.WriteLine("$Line")
143 |   $stream.close()
144 | 
145 |   # Remove above 3 lines with $stream and uncomment line below if you want to use Out-File instead of StreamWriter as log write metod
146 |   # Out-File -InputObject $Line -FilePath $ScriptLogFilePath -Encoding UTF8 -Append 
147 | }
148 | #endregion
149 | 
150 | # Add functions Here
151 | 
152 | 
153 | #endregion -----------------------------------------------[Functions]--------------------------------------------------------------
154 | #region---------------------------------------------------[Execution]--------------------------------------------------------------
155 | #Default logging to %temp%\scriptname.log, change if needed.
156 | Start-Log -FilePath "$($env:TEMP)\$([io.path]::GetFileNameWithoutExtension($MyInvocation.MyCommand.Name)).log"
157 | # Syntax is:
158 | # Loglevel 1 is default and does not need to be specified
159 | # Write-Log -Message "<message goes here>"
160 | # Write-Log -Message "<message goes here>" -LogLevel 2
161 | 
162 | #Script Execution goes here
163 | 


--------------------------------------------------------------------------------
/ConfigMgr/Read-CMLog.ps1:
--------------------------------------------------------------------------------
  1 | <#
  2 | .SYNOPSIS
  3 |   Function for reading CM logs in powershell
  4 | 
  5 | .DESCRIPTION
  6 |   <Brief description of script>
  7 | 
  8 | .PARAMETER path
  9 |   Sets one or more paths to load logfiles from
 10 | 
 11 | .PARAMETER LogLevel
 12 |     Sets the Minimum level for log level that will be displayed, default is everything.
 13 | 
 14 | .PARAMETER Gridview
 15 |     Opens the output in a gridview windows
 16 | 
 17 | .PARAMETER passthru
 18 |     Outputs the array directly without any formating for further use.
 19 | 
 20 | .INPUTS
 21 |   None
 22 | 
 23 | .OUTPUTS
 24 |   Array of logentries
 25 | 
 26 | .NOTES
 27 |   Version:        1.0
 28 |   Author:         Mattias Benninge
 29 |   Creation Date:  2017-05-04
 30 |   Purpose/Change: Initial script development
 31 | 
 32 | .EXAMPLE
 33 |     Gets all warnings and errors from multiple logfiles
 34 |     .\Read-CMLog.ps1 -path C:\Windows\CCM\logs\DcmWmiProvider.log,C:\Windows\CCM\logs\ccmexec.log -LogLevel Warning
 35 | 
 36 | .EXAMPLE
 37 |     Gets multiple logfiles and present in a GridView
 38 |     .\Read-CMLog.ps1 -path C:\Windows\CCM\logs\DcmWmiProvider.log,C:\Windows\CCM\logs\ccmexec.log -Gridview
 39 | 
 40 | #>
 41 | #Requires -RunAsAdministrator
 42 | 
 43 | #region --------------------------------------------------[Script Parameters]------------------------------------------------------
 44 | param (
 45 |     [Parameter(Mandatory = $true)]
 46 |     [array]$path,
 47 | 		
 48 |     [Parameter()]
 49 |     [ValidateSet("Informational", "Warning", "Error")]
 50 |     [string]$LogLevel = "None",
 51 | 
 52 |     [Parameter()]
 53 |     [switch]$Gridview,
 54 | 
 55 |     [Parameter()]
 56 |     [switch]$passthru
 57 |     )  
 58 | #endregion
 59 | 
 60 | #region ---------------------------------------------------[Declarations]----------------------------------------------------------
 61 | #Create an Enum for the diffrent log levels
 62 |  Add-Type -TypeDefinition @"
 63 |     public enum LogType
 64 |     {
 65 |         None,
 66 |         Informational,
 67 |         Warning,
 68 |         Error
 69 |      }
 70 | "@
 71 | #endregion
 72 | 
 73 | #region ---------------------------------------------------[Functions]------------------------------------------------------------
 74 | 
 75 | Function Read-CMLogfile([array]$paths) {
 76 | 
 77 |     $result = $null
 78 |     $result = @()
 79 |     Foreach($path in $paths){
 80 |         $cmlogformat = $false
 81 |         $cmslimlogformat = $false
 82 |         # Use .Net function instead of Get-Content, much faster.
 83 |         $file = [System.io.File]::Open($path, 'Open', 'Read', 'ReadWrite')
 84 |         $reader = New-Object System.IO.StreamReader($file)
 85 |         [string]$LogFileRaw = $reader.ReadToEnd()
 86 |         $reader.Close()
 87 |         $file.Close()
 88 | 
 89 |         $pattern = "LOG\[(.*?)\]LOG(.*?)time(.*?)date"
 90 |         $patternslim = '\$\$\<(.*?)\>\<thread='
 91 |         
 92 |         if(([Regex]::Match($LogFileRaw, $pattern)).Success -eq $true){ $cmlogformat = $true}
 93 |         elseif(([Regex]::Match($LogFileRaw, $patternslim)).Success -eq $true){ $cmslimlogformat = $true}
 94 |         
 95 |         If($cmlogformat){
 96 |                 
 97 |             # Split each Logentry into an array since each entry can span over multiple lines
 98 |             $logarray = $LogFileRaw -split "<!"
 99 | 
100 |             foreach($logline in $logarray){
101 |                 
102 |                 If($logline){            
103 |                     # split Log text and meta data values
104 |                     $metadata = $logline -split "><"
105 | 
106 |                     # Clean up Log text by stripping the start and end of each entry
107 |                     $logtext = ($metadata[0]).Substring(0,($metadata[0]).Length-6).Substring(5)
108 |             
109 |                     # Split metadata into an array
110 |                     $metaarray = $metadata[1] -split '"'
111 | 
112 |                     # Rebuild the result into a custom PSObject
113 |                     $result += $logtext |select-object @{Label="LogText";Expression={$logtext}}, @{Label="Type";Expression={[LogType]$metaarray[9]}},@{Label="Component";Expression={$metaarray[5]}},@{Label="DateTime";Expression={[datetime]::ParseExact($metaarray[3]+($metaarray[1]).Split("-")[0].Split("+")[0].ToString(), "MM-dd-yyyyHH:mm:ss.fff", $null)}},@{Label="Thread";Expression={$metaarray[11]}}
114 |                 }        
115 |             }
116 |         }
117 | 
118 |         If($cmslimlogformat){
119 |        
120 |         # Split each Logentry into an array since each entry can span over multiple lines
121 |         $logarray = $LogFileRaw -split [System.Environment]::NewLine
122 |               
123 |         foreach($logline in $logarray){
124 |             
125 |             If($logline){  
126 | 
127 |                     # split Log text and meta data values
128 |                     $metadata = $logline -split '\$\$<'
129 | 
130 |                     # Clean up Log text by stripping the start and end of each entry
131 |                     $logtext = $metadata[0]
132 |             
133 |                     # Split metadata into an array
134 |                     $metaarray = $metadata[1] -split '><'
135 |                     If($logtext){
136 |                         # Rebuild the result into a custom PSObject
137 |                         If($metaarray[1] -match '\+'){
138 |                             $result += $logtext |select-object @{Label="LogText";Expression={$logtext}}, @{Label="Type";Expression={[LogType]0}},@{Label="Component";Expression={$metaarray[0]}},@{Label="DateTime";Expression={[datetime]::ParseExact(($metaarray[1]).Substring(0, ($metaarray[1]).Length - (($metaarray[1]).Length - ($metaarray[1]).LastIndexOf("+"))), "MM-dd-yyyy HH:mm:ss.fff", $null)}},@{Label="Thread";Expression={($metaarray[2] -split " ")[0].Substring(7)}}
139 |                         }
140 |                         else{
141 |                             $result += $logtext |select-object @{Label="LogText";Expression={$logtext}}, @{Label="Type";Expression={[LogType]0}},@{Label="Component";Expression={$metaarray[0]}},@{Label="DateTime";Expression={[datetime]::ParseExact(($metaarray[1]).Substring(0, ($metaarray[1]).Length - (($metaarray[1]).Length - ($metaarray[1]).LastIndexOf("-"))), "MM-dd-yyyy HH:mm:ss.fff", $null)}},@{Label="Thread";Expression={($metaarray[2] -split " ")[0].Substring(7)}}
142 |                         }
143 |                     }
144 |                 }
145 |             }
146 |         }
147 |     }
148 | 
149 |     
150 |     $result #return data
151 | }
152 | #endregion
153 | 
154 | #-----------------------------------------------------------[Execution]------------------------------------------------------------
155 | 
156 | If($Gridview){
157 |     Read-CMLogfile -path $path |Where-Object {$_.Type -ge ([LogType]::($LogLevel).value__)} |Sort-Object DateTime | Out-GridView -Title "Powershell Logviewer by Mattias Benninge" -Wait
158 | }
159 | Elseif($passthru){
160 |     Read-CMLogfile -path $path |Where-Object {$_.Type -ge ([LogType]::($LogLevel).value__)}
161 | }
162 | else {
163 |     Read-CMLogfile -path $path |Where-Object {$_.Type -ge ([LogType]::($LogLevel).value__)} |Sort-Object DateTime |ft
164 | }
165 | 
166 | 
167 | 


--------------------------------------------------------------------------------
/ConfigMgr/Test-CMMPUrl.ps1:
--------------------------------------------------------------------------------
  1 | Function Test-CMMPUrl {
  2 |     <#
  3 | .SYNOPSIS
  4 |   Tests urls on CM Management points
  5 | 
  6 | .DESCRIPTION
  7 |   This script will test if the urls "/sms_mp/.sms_aut?mpcert" and "/sms_mp/.sms_aut?mpcert" are responding correctly on a CM Management Point.
  8 | 
  9 | .PARAMETER FQDN
 10 |   Fully Qualified Domain Name for the MECM MP server
 11 | 
 12 | .PARAMETER  Detail
 13 |     Gives a more detailed output using the custom "Webresponse" class
 14 | 
 15 | .PARAMETER Timeout
 16 |     Specifies the Timeout paramater for the Invoke-webrequest command
 17 | 
 18 | .PARAMETER HTTPS
 19 |     Switch specifying that HTTPS connection should be tested
 20 | 
 21 | .PARAMETER Thumbprint
 22 |     Mandatory paramter if "HTTPS" is used.
 23 |     Specifies the thumbprint of the certificate that should be used to make the connection. Usually the computer certificate.
 24 |     Use "Get-ChildItem -Path cert:\LocalMachine\My\" to find the correct thumbprint.
 25 | 
 26 | .INPUTS
 27 |   None
 28 | 
 29 | .OUTPUTS
 30 |   Default output is true or false.
 31 |   If using the -Details switch it outputs the custom "Webresponse" class instead of true/false
 32 | 
 33 | .NOTES
 34 |   Version:        1.0
 35 |   Author:         Mattias Benninge
 36 |   Creation Date:  2020-01-10
 37 |   Purpose/Change: Initial script development
 38 |   Based on a script made by Jeff Hicks, https://www.petri.com/testing-uris-urls-powershell
 39 | 
 40 | .EXAMPLE
 41 |     $thumbprint = (Get-ChildItem -Path cert:\LocalMachine\My\)[0].ThumbPrint
 42 | 
 43 |     Test-CMMPURL -FQDN "<FQDNForMP>","<FQDNForMP2>" -Detail -HTTPS -Thumbprint $thumbprint
 44 | 
 45 | #>
 46 |     [CmdletBinding(DefaultParametersetName = 'Default')] 
 47 |     Param(
 48 |         [Parameter(Position = 0, Mandatory, HelpMessage = "Enter the FQDN of the MP server/servers",
 49 |             ValueFromPipeline, ValueFromPipelineByPropertyName)]
 50 |         [ValidatePattern( "(.)" )][string[]]$FQDN,
 51 |         [Parameter(Position = 1)][Switch]$Detail,
 52 |         [Parameter(Position = 2)][ValidateScript( { $_ -ge 0 })][int]$Timeout = 30,
 53 |         [Parameter(ParameterSetName = 'PKI', Mandatory = $false)][switch]$HTTPS,      
 54 |         [Parameter(ParameterSetName = 'PKI', Mandatory = $true)][string]$Thumbprint
 55 |     )
 56 |      
 57 |     Begin {
 58 |         Write-Verbose -Message "Starting $($MyInvocation.Mycommand)" 
 59 |         Write-Verbose -message "Using parameter set $($PSCmdlet.ParameterSetName)"
 60 |         Class WebResponse {
 61 |             [string]$ResponseUri
 62 |             [int]$ContentLength 
 63 |             [string]$ContentType
 64 |             [DateTime]$LastModified 
 65 |             [int]$Status 
 66 |         }
 67 | 
 68 |         $returnobject = @() #create array for return object
 69 | 		
 70 | 		# Make sure Invoke-Webrequest use TLS 1.2 otherwise the script will fail on 2019 servers or servers that require TLS1.2 communication
 71 | 		[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12
 72 | 		
 73 |     } #close begin block
 74 |      
 75 |     Process {
 76 |         Foreach ($Computer in $FQDN) {
 77 |          
 78 |             $urlsToTest = @()
 79 |             $urlsToTest += "://$Computer/sms_mp/.sms_aut?mpcert"
 80 |             $urlsToTest += "://$Computer/sms_mp/.sms_aut?mplist"
 81 | 
 82 |             Foreach ($url in $urlsToTest) {
 83 |                 Write-Verbose -Message "Testing $Computer"
 84 | 
 85 |                 If ($HTTPS) {
 86 |                     $url = "https" + $url
 87 |                 }
 88 |                 else {
 89 |                     $url = "http" + $url
 90 |                 }
 91 |                 Try {
 92 |                 
 93 |                     if ($HTTPS) { 
 94 |                         #hash table of parameter values for Invoke-Webrequest
 95 |                         $paramHash = @{
 96 |                             UseBasicParsing  = $True
 97 |                             DisableKeepAlive = $True
 98 |                             Uri              = $url
 99 |                             Method           = 'Get'
100 |                             ErrorAction      = 'stop'
101 |                             TimeoutSec       = $Timeout
102 |                             Certificate      = Get-ChildItem -Path "cert:\LocalMachine\My\$($thumbprint)"
103 |                         }
104 |                     }
105 |                     else {
106 |                         #hash table of parameter values for Invoke-Webrequest
107 |                         $paramHash = @{
108 |                             UseBasicParsing  = $True
109 |                             DisableKeepAlive = $True
110 |                             Uri              = $url
111 |                             Method           = 'Get'
112 |                             ErrorAction      = 'stop'
113 |                             TimeoutSec       = $Timeout
114 |                         }
115 |                     }
116 |      
117 |                     $test = Invoke-WebRequest @paramHash
118 |      
119 |                     if ($Detail) {
120 |                         # $objProp = $test.BaseResponse | Select-Object ResponseURI,ContentLength,ContentType,LastModified, @{Name="Status";Expression={$Test.StatusCode}}
121 |                         $returnobject += New-Object WebResponse -Property @{
122 |                             ResponseUri   = $test.BaseResponse.ResponseURI
123 |                             ContentLength = $test.BaseResponse.ContentLength
124 |                             ContentType   = $test.BaseResponse.ContentType
125 |                             LastModified  = $test.BaseResponse.LastModified
126 |                             Status        = $Test.StatusCode
127 |                         }
128 |                     } #if $detail
129 |                     else {
130 |                         if ($test.statuscode -ne 200) {
131 |                             #it is unlikely this code will ever run but just in case
132 |                             Write-Verbose "Statuscode response = $test.Status"
133 |                             Write-Verbose -Message "Failed to request $uri"
134 |                             write-Verbose -message ($test | out-string)
135 |                             $False
136 |                         }
137 |                         else {
138 |                             Write-Verbose "Statuscode response = $($test.StatusCode)"
139 |                             $True
140 |                         }
141 |                     } #else quiet
142 |          
143 |                 }
144 |                 Catch {
145 |                     #there was an exception getting the URI
146 |                     write-verbose -message $_.exception
147 |                     if ($Detail) {
148 |                         #most likely the resource is 404
149 |                         $returnobject += New-Object WebResponse -Property @{
150 |                             ResponseUri   = $url
151 |                             ContentLength = 0
152 |                             ContentType   = $null
153 |                             LastModified  = 0
154 |                             Status        = 404
155 |                         }
156 |                         #write a matching custom object to the pipeline
157 |                         New-Object -TypeName psobject -Property $objProp
158 | 
159 |                     } #if $detail
160 |                     else {
161 |                         $False
162 |                     }
163 |                 } #close Catch block
164 |             }
165 |         }
166 |     } #close Process block
167 |      
168 |     End {
169 |         $returnobject 
170 |         Write-Verbose -Message "Ending $($MyInvocation.Mycommand)"
171 |     } #close end block
172 |      
173 | } #close Test-CMMPUrl Function
174 | 


--------------------------------------------------------------------------------
/FSRM/Update-FSRMServer.ps1:
--------------------------------------------------------------------------------
  1 | <#
  2 | .SYNOPSIS
  3 |   Update-FSRMServer
  4 | 
  5 | .DESCRIPTION
  6 |   Used for managing a server installed by New-FSRMServer.
  7 | 
  8 | .INPUTS
  9 |   None
 10 | 
 11 | .OUTPUTS
 12 |   None
 13 | 
 14 | .NOTES
 15 |   Version:        1.0
 16 |   Author:         Mattias Benninge
 17 |   Creation Date:  2017-05-24
 18 |   Purpose/Change: Initial script development
 19 | 
 20 | #>
 21 | 
 22 | #region ---------------------------------------------------[Declarations]----------------------------------------------------------
 23 | 
 24 | #Any Global Declarations go here
 25 | $maxlogfilesize = 5Mb
 26 | 
 27 | #Function Declarations
 28 | # Extensions that will block user access to the share
 29 | $ransompattern = @("*.wnry", "*.wcry", "*.wncry", "*.wncryt")
 30 | 
 31 | # Disk drives that will be excluded from File Screen
 32 | $diskexeptions= "C","T"
 33 | 
 34 | # General FSRM Settings
 35 | #-------------
 36 | $SMTPServer = "smtp.corp.SCCMTest.org"
 37 | $SMTPFrom = "noreply@corp.SCCMTest.org"
 38 | $AdminEmail = "helpdesk@corp.SCCMTest.org"
 39 | #-------------
 40 | 
 41 | # Event settings for the "Ransomware template
 42 | #-------------
 43 | $EventCommand = 'C:\Windows\System32\cmd.exe'
 44 | $EventCommandParam = '/c "C:\RansomwareBlockSmb\StartRansomwareBlockSmb.cmd"'
 45 | $EventCommandWorkDir = "C:\Windows\System32\"
 46 | 
 47 | $EventLogEntry = "[Source Io Owner];[Source File Path];[Violated File Group]"
 48 | 
 49 | $SMTPTo = "[Admin Email];[Source Io Owner Email]" 
 50 | $emailSubject = "Security Announcement from the IT-Department"
 51 | $emailBody = @"
 52 | Your account have been locked out. The reason is that you or someone in your name have tried to change a file extension to an extension identified as ransomware.
 53 | 
 54 | DO THE FOLLOWING!
 55 | 1. Shut down your computer immediately
 56 | 2. Have your logon name and computer name ready.
 57 | 3. Contact Helpdesk immediately and inform them that you have received this message.
 58 | 
 59 | TECHNICAL INFORMATION FOR HELPDESK!
 60 | File: [Source File Path]
 61 | Server: [Server]
 62 | Username: [Source Io Owner]
 63 | 
 64 | /Your IT-Department
 65 | "@
 66 | #-------------
 67 | 
 68 | #endregion
 69 | #region ---------------------------------------------------[Functions]------------------------------------------------------------
 70 | 
 71 | #region Logging: Functions used for Logging, do not edit!
 72 | Function Start-Log{
 73 | [CmdletBinding()]
 74 |     param (
 75 |         [ValidateScript({ Split-Path $_ -Parent | Test-Path })]
 76 | 	    [string]$FilePath
 77 |     )
 78 | 	
 79 |     try
 80 |     {
 81 |         if (!(Test-Path $FilePath))
 82 | 	    {
 83 | 	        ## Create the log file
 84 | 	        New-Item $FilePath -Type File | Out-Null
 85 | 	    }
 86 | 		
 87 | 	    ## Set the global variable to be used as the FilePath for all subsequent Write-Log
 88 | 	    ## calls in this session
 89 | 	    $global:ScriptLogFilePath = $FilePath
 90 |     }
 91 |     catch
 92 |     {
 93 |         Write-Error $_.Exception.Message
 94 |     }
 95 | }
 96 | 
 97 | Function Write-Log{
 98 | param (
 99 |     [Parameter(Mandatory = $true)]
100 |     [string]$Message,
101 | 		
102 |     [Parameter()]
103 |     [ValidateSet(1, 2, 3)]
104 |     [int]$LogLevel = 1
105 |     )    
106 |     $TimeGenerated = "$(Get-Date -Format HH:mm:ss).$((Get-Date).Millisecond)+000"
107 |     $Line = '<![LOG[{0}]LOG]!><time="{1}" date="{2}" component="{3}" context="" type="{4}" thread="" file="">'
108 |     
109 |     if($MyInvocation.ScriptName){
110 |         $LineFormat = $Message, $TimeGenerated, (Get-Date -Format MM-dd-yyyy), "$($MyInvocation.ScriptName | Split-Path -Leaf):$($MyInvocation.ScriptLineNumber)", $LogLevel
111 |     }
112 |     else { #if the script havn't been saved yet and does not have a name this will state unknown.
113 |         $LineFormat = $Message, $TimeGenerated, (Get-Date -Format MM-dd-yyyy), "Unknown", $LogLevel
114 |     }
115 |     $Line = $Line -f $LineFormat
116 | 
117 |     #Make sure the logfile do not exceed the $maxlogfilesize
118 |     if (Test-Path $ScriptLogFilePath) { 
119 |         if((Get-Item $ScriptLogFilePath).length -ge $maxlogfilesize){
120 |             If(Test-Path "$($ScriptLogFilePath.Substring(0,$ScriptLogFilePath.Length-1))_")
121 |             {
122 |                 Remove-Item -path "$($ScriptLogFilePath.Substring(0,$ScriptLogFilePath.Length-1))_" -Force
123 |             }
124 |             Rename-Item -Path $ScriptLogFilePath -NewName "$($ScriptLogFilePath.Substring(0,$ScriptLogFilePath.Length-1))_" -Force
125 |         }
126 |     }
127 | 
128 |     Add-Content -Value $Line -Path $ScriptLogFilePath
129 | 
130 | }
131 | #endregion
132 | 
133 | # Add functions Here
134 | 
135 | Function Update-FsrmFileGroup{
136 |     try{
137 |         #set-FsrmFileGroup -name "Ransomware_Extensions" -IncludePattern @((Invoke-WebRequest -Uri "https://fsrm.experiant.ca/api/v1/combined" -UseBasicParsing).content | convertfrom-json | % {$_.filters}) 
138 | 	Set-FsrmFileGroup -Name "Ransomware_Extensions" –IncludePattern $ransompattern -ErrorAction Stop |Out-Null
139 |         Write-Log -Message "Updated Ransomware File Group"
140 |         }
141 |         catch
142 |         {
143 |             Write-Log -Message $_.Exception.Message -LogLevel 3
144 |         }
145 | }
146 | 
147 | Function Update-FsrmSetting{
148 | 
149 |     try{
150 |         set-FsrmSetting -AdminEmailAddress $AdminEmail -SmtpServer $SMTPServer -FromEmailAddress $SMTPFrom -ErrorAction Stop |Out-Null
151 |         Write-Log -Message "Updated FSRM Settings to: AdminEmailAddress $AdminEmail, SmtpServer $SMTPServer, FromEmailAddress $SMTPFrom"
152 |     }
153 |     catch
154 |     {
155 |         Write-Log -Message $_.Exception.Message -LogLevel 3  
156 |     }
157 |  
158 | }
159 |     
160 | Function Update-FsrmFileScreenTemplate{    
161 |     #Create Notification types
162 |     try{
163 |         $global:emailnotification = New-FsrmAction -Type Email -Subject $emailSubject -Body $emailBody -RunLimitInterval 60 -MailTo $SMTPTo -ErrorAction Stop
164 |         $global:eventnotification = New-FsrmAction -Type Event -Body $EventLogEntry -RunLimitInterval 0 -EventType Warning -ErrorAction Stop
165 |         $global:commandnotification = New-FsrmAction -Type Command -Command $EventCommand -CommandParameters $EventCommandParam -SecurityLevel LocalSystem -RunLimitInterval 0 -WorkingDirectory $EventCommandWorkDir -ShouldLogError -KillTimeOut 0 -ErrorAction Stop
166 |         Write-Log -Message "Updated notifications Successfully."
167 |     }
168 |     catch
169 |     {
170 |         Write-Log -Message $_.Exception.Message -LogLevel 3  
171 |     }        
172 |     
173 |     # Add them to an array
174 |     [Ciminstance[]]$notificationArray = $global:emailnotification,$global:eventnotification,$global:commandnotification
175 | 
176 |     #Create a new template
177 |     try
178 |     {
179 |         Set-FsrmFileScreenTemplate -Name "Ransomware" -Description "Known Ransomware File Extesions" -IncludeGroup "Ransomware_Extensions" -Active: $true -Notification $notificationArray -UpdateDerived -ErrorAction Stop |Out-Null
180 |         Write-Log -Message "Updateded FSRM Template Ransomware and all derived File Screens"
181 |     }
182 |     catch
183 |     {
184 |         Write-Log -Message $_.Exception.Message -LogLevel 3  
185 |     }    
186 | }    
187 | 
188 | 
189 | #endregion
190 | #-----------------------------------------------------------[Execution]------------------------------------------------------------
191 | #Default logging to %temp%\scriptname.log, change if needed.
192 | Start-Log -FilePath "C:\Update-FSRMServer.log"
193 | # Syntax is:
194 | # Loglevel 1 is default and does not need to be specified
195 | # Write-Log -Message "<message goes here>"
196 | # Write-Log -Message "<message goes here>" -LogLevel 2
197 | 
198 | #Script Execution goes here
199 | Update-FsrmFileGroup
200 | Update-FsrmSetting
201 | Update-FsrmFileScreenTemplate
202 | #Invoke-Command –ComputerName VANSRV532 –FilePath .\New-FSRMServer.ps1
203 | 


--------------------------------------------------------------------------------
/Other/Backup_TechNet_Gallery_Contributions_Category.ps1:
--------------------------------------------------------------------------------
  1 | <#
  2 | .SYNOPSIS
  3 |   Creates a backup of a category from technet gallery which will be discontinued in June 2020.
  4 | 
  5 | .NOTES
  6 |   Version:        1.0
  7 |   Author:         Mattias Benninge
  8 |   Creation Date:  2020-05-22
  9 |   Purpose/Change: Initial script development
 10 |   Based on a script by Damien van Robaeys
 11 |   https://github.com/damienvanrobaeys/Backup_Technet_Gallery_Contrib
 12 |   
 13 |   - Damiens script exported everything for a specific user, my version exports everthing in a category
 14 |   - This version also exports the full description of the project.
 15 |   - Added User and last updated date to summary.txt file
 16 |   - Exports any powershell code in the description into a file called PowerShell.ps1
 17 |   - Updates all folders created/last changedate based on the projects last updated date.
 18 | 
 19 | #>
 20 | 
 21 | # Parameters, Edit these!
 22 | #output folder (must already exist)
 23 | $Backup_output_Folder = "D:\temp\TechnetGallery\ConfigMgr"
 24 | 
 25 | #ConfigMgr The link of the category/user you want to backup, this link downloads everything in the "configmanager" catagory
 26 | $link = 'https://gallery.technet.microsoft.com/site/search?f%5B0%5D.Type=RootCategory&f%5B0%5D.Value=SystemCenter&f%5B0%5D.Text=System%20Center&f%5B1%5D.Type=SubCategory&f%5B1%5D.Value=configmanager&f%5B1%5D.Text=Configuration%20Manager'
 27 | 
 28 | #EMS The link of the category/user you want to backup, this link downloads everything in the "EMS/Azure Active Directory" catagory
 29 | #$link = 'https://gallery.technet.microsoft.com/site/search?f%5B0%5D.Type=RootCategory&f%5B0%5D.Value=enterprisemobility%2Bsecurity&f%5B0%5D.Text=Enterprise%20Mobility%20%2B%20Security&f%5B1%5D.Type=SubCategory&f%5B1%5D.Value=enterprisemobility%2Bsecurity_azureactivedirectory&f%5B1%5D.Text=Azure%20Active%20Directory'
 30 | 
 31 | 
 32 | #------- Script Start -------
 33 | #Base url for the technet gallery
 34 | $Basic_Technet_Link = "https://gallery.technet.microsoft.com"
 35 | 
 36 | $parse_profile = Invoke-WebRequest -Uri $link | select *
 37 | 
 38 | $Get_Last_Character = $parse_profile.ParsedHtml.body.getElementsByClassName("Link")| Where {$_.innertext -like "*Last*"} 
 39 | 
 40 | $Get_Last_Page = ($Get_Last_Character  | select -expand href).Split("=")[-1] 
 41 | $Contrib_Array = $null
 42 | $Contrib_Array = @()
 43 | for ($i=1; $i -le $Get_Last_Page; $i++)
 44 | 	{
 45 | 		$Percent_Progress = [math]::Round($i / $Get_Last_Page * 100)
 46 |         Write-Progress -Activity "Retriving Technet Gallery contributions" -status "Page $i / $Get_Last_Page - $Percent_Progress %"
 47 |         $Current_Link = $link +  "&pageIndex=$i"	
 48 | 		$Parse_Current_Page = Invoke-WebRequest -Uri $Current_Link | select *
 49 | 		$Current_Page_Content = $Parse_Current_Page.links | Foreach {$_.href }
 50 | 		$Current_Page_Links = $Current_Page_Content | Select-String -Pattern 'about:','^/' | Select-String -Pattern "/site/" -NotMatch  | Select-String -Pattern "about:blank#" -NotMatch | Select-String -Pattern "about:/Account/" -NotMatch	| Select-String -Pattern "/Account/" -NotMatch	
 51 | 		#$Current_Page_Links = $Current_Page_Content | Select-String -Pattern '^/' | Select-String -Pattern "/site/" -NotMatch  | Select-String -Pattern "about:blank#" -NotMatch | Select-String -Pattern "about:/Account/" -NotMatch | Select-String -Pattern "/Account/" -NotMatch		
 52 |         $Contrib_Obj = New-Object PSObject
 53 | 		$Contrib_Obj | Add-Member NoteProperty -Name "Link" -Value $Current_Page_Links	
 54 | 		$Contrib_Array += $Contrib_Obj	
 55 | 	}
 56 | 
 57 | $Number_of_contributions = ($parse_profile.ParsedHtml.body.getElementsByClassName("browseBreadcrumb") | select -expand textContent).split(" ")[0]
 58 | for ($i = 0; $i -lt $Number_of_contributions;)
 59 | { 
 60 | ForEach($Contrib in $Contrib_Array.link)
 61 | 	{
 62 | 			$i++
 63 | 			$Percent_Progress = [math]::Round($i / $Number_of_contributions * 100)
 64 | 			Write-Progress -Activity "Backup Technet Gallery contributions" -status "Contribution $i / $Number_of_contributions - $Percent_Progress %"
 65 | 					
 66 | 			$Contrib_Sring = [string]$Contrib
 67 |             If($Contrib_Sring -match ":") { $Contrib_Sring  = $Contrib_Sring.split(':')[1] }
 68 | 			$Contrib_To_Get = $Basic_Technet_Link + $Contrib_Sring
 69 | 			$Parse_Contrib_Link = Invoke-WebRequest -Uri $Contrib_To_Get | select *
 70 | 					
 71 | 			$Parse_Contrib_Body = $Parse_Contrib_Link.ParsedHtml.body
 72 | 			$Get_Contrib_Title_NoFormat = ($Parse_Contrib_Body.getElementsByClassName("projectTitle")) |  select -expand innertext
 73 | 			$Get_Contrib_Summary = ($Parse_Contrib_Body.getElementsByClassName("projectSummary")) |  select -expand innerHTML
 74 | 			$Get_Contrib_Summary_HTML = ($Parse_Contrib_Body.getElementsByClassName("projectSummary")) |  select -expand outerHTML
 75 | 
 76 |             $Get_Lastupdate = ((($Parse_Contrib_Body.getElementsByClassName("section").item(3)) | select -expand textContent)  -split "License")[0]
 77 |             
 78 |             #Get username from link
 79 |             $username_link = $Parse_Contrib_Body.getElementsByClassName("unified-baseball-card") | select -expand outerHTML
 80 |             $pattern = 'f\%5B0\%5D\.Value=(.*?)","text":'
 81 |             $User_Name_Complete = [regex]::Match($username_link,$pattern).Groups[1].Value
 82 |             $User_Name = $User_Name_Complete.Replace("%20"," ")	
 83 | 
 84 | 			$Get_Contrib_Link = $Parse_Contrib_Body.getElementsByClassName("button") | select -expand pathname
 85 | 			$Get_Contrib_Download_File = $Parse_Contrib_Body.getElementsByClassName("button") | select -expand textContent -ErrorAction silentlycontinue
 86 | 					
 87 | 			$full_link = "$Basic_Technet_Link/$Get_Contrib_Link"
 88 | 					
 89 | 			$Get_Contrib_Title = ($Get_Contrib_Title_NoFormat -Replace'[\\/:*?"<>|()]'," ").replace("[","").replace("]","").replace(" ","_")
 90 | 					
 91 | 			write-host ""
 92 | 			write-host "Working on the contribution $Get_Contrib_Title" -foreground "cyan"
 93 | 					
 94 | 			$Contrib_Folder = "$Backup_output_Folder\$Get_Contrib_Title" 				
 95 | 					
 96 | 			New-Item $Contrib_Folder -Type Directory -Force | out-null
 97 | 
 98 | 			write-host "Folder $Contrib_Folder has been created" 
 99 | 						
100 | 			$Contrib_File_Summary = "$Contrib_Folder\Summary.txt"
101 | 			$User_Name + "`r`n" + $Get_Lastupdate + "`r`n" + $Get_Contrib_Summary | out-file $Contrib_File_Summary				
102 | 					
103 | 			$Contrib_File_Summary_HTML = "$Contrib_Folder\Summary_HTML.txt"
104 | 			$Get_Contrib_Summary_HTML | out-file $Contrib_File_Summary_HTML				
105 | 			write-host "A summary.txt file has been created in the folder with the description of the contribution."
106 | 
107 | 			If($Get_Contrib_Download_File -ne $null)
108 | 				{
109 | 					Invoke-WebRequest -Uri $full_link -OutFile "$Contrib_Folder\$Get_Contrib_Download_File"		
110 | 					write-host "The file $Get_Contrib_Download_File has been downloaded in the folder"
111 | 				}
112 | 			Else
113 | 				{
114 | 					write-host "There is no uploaded file to backup"			
115 | 				}
116 | 
117 |             #Get Long Description and PowerShell script if it is in description rather than a downloadable file
118 |             $Description_To_Get = $Contrib_To_Get + "/description"
119 |             $Parse_Description_Link = Invoke-WebRequest -Uri $Description_To_Get | select *
120 | 					
121 | 			$Parse_Description_Body = $Parse_Description_Link.ParsedHtml.body
122 |             $Get_LongDescription_Text = $Parse_Description_Body |  select -expand outerText
123 | 			$Get_PowerShell_Script = ($Parse_Description_Body.getElementsByClassName("powershell")) |  select -expand outerText
124 |             
125 |             $Get_LongDescription_Text | out-file "$Contrib_Folder\LongDescription.txt"
126 | 
127 | 			If($null -ne $Get_PowerShell_Script)
128 | 				{
129 | 					$Get_PowerShell_Script | out-file "$Contrib_Folder\PowerShell.ps1"	
130 | 					write-host "PowerShell.ps1 has been created in the folder"
131 | 				}
132 | 			Else
133 | 				{
134 | 					write-host "There is no PowerShell on project page"			
135 | 				}
136 | 			
137 | 	}
138 | }
139 | 
140 | #Update the folder create and change dates to match the projects last updated date
141 | $createdfolders = Get-ChildItem -Path $Backup_output_Folder -Directory
142 | 
143 | foreach($folder in $createdfolders)
144 | {
145 |     try{
146 |     $summaryfile = Get-Content -Path "$($folder.FullName)\Summary.txt"
147 |     $updateDate = Get-date ($summaryfile[1] -split " ")[1]
148 |     $folder.CreationTime = $updateDate
149 |     $folder.LastWriteTime = $updateDate
150 |     }
151 |     catch {}
152 | }


--------------------------------------------------------------------------------
/Intune/Set-IntuneDeviceManangementScriptAssignment.ps1:
--------------------------------------------------------------------------------
  1 | 
  2 | <#
  3 | .SYNOPSIS
  4 |   Set-IntuneDeviceManangementScriptAssignment.ps1
  5 | 
  6 | .DESCRIPTION
  7 |   Sets an assignment for a windows script in Intune via the Graph API
  8 | 
  9 | .PARAMETER ScriptID
 10 |   The Intune ID of the script that the assignment will be created for.
 11 | 
 12 | .PARAMETER GroupID
 13 |   The Azure ID of the group to be added.
 14 |   
 15 | .PARAMETER Tenant
 16 |   Specifies which tentant to use. <sometenant.onmicrosoft.com>
 17 | 
 18 | .NOTES
 19 |   Version:        1.0
 20 |   Author:         Mattias Benninge
 21 |   Creation Date:  2022-08-22
 22 |   Purpose/Change: Initial script development
 23 |  
 24 | .EXAMPLE
 25 |   Set-IntuneDeviceManangementScriptAssignment.ps1
 26 | #>
 27 | [CmdletBinding()]
 28 | Param (
 29 |     [Parameter(Mandatory = $True)] [string] $ScriptID = "",
 30 |     [Parameter(Mandatory = $True)] [string] $GroupID = "",
 31 |     [Parameter(Mandatory = $False)] [string] $Tenant = "" #<tenant>.onmicrosoft.com
 32 | 
 33 | )
 34 | 
 35 | 
 36 | function Get-AuthToken {
 37 |     <#
 38 |     .SYNOPSIS
 39 |     This function is used to authenticate with the Graph API REST interface
 40 |     .DESCRIPTION
 41 |     The function authenticate with the Graph API Interface with the tenant name
 42 |     .EXAMPLE
 43 |     Get-AuthToken
 44 |     Authenticates you with the Graph API interface
 45 |     .NOTES
 46 |     NAME: Get-AuthToken
 47 |     #>
 48 |     [cmdletbinding()]
 49 |     param
 50 |     (
 51 |         [Parameter(Mandatory = $true)]
 52 |         $User
 53 |     )
 54 |     
 55 |     if (!$tenant) {
 56 |         $userUpn = New-Object "System.Net.Mail.MailAddress" -ArgumentList $User
 57 |         $tenant = $userUpn.Host
 58 |     }
 59 | 
 60 |     Write-Host "Checking for AzureAD module..."
 61 |     $AadModule = Get-Module -Name "AzureAD" -ListAvailable
 62 |     if ($null -eq $AadModule) {
 63 |         Write-Host "AzureAD PowerShell module not found, looking for AzureADPreview"
 64 | 
 65 |         $AadModule = Get-Module -Name "AzureADPreview" -ListAvailable
 66 |     }
 67 |     
 68 |     if ($null -eq $AadModule) {
 69 |         write-host
 70 |         write-host "AzureAD Powershell module not installed..." -f Red
 71 |         write-host "Install by running 'Install-Module AzureAD' or 'Install-Module AzureADPreview' from an elevated PowerShell prompt" -f Yellow
 72 |         write-host "Script can't continue..." -f Red
 73 | 
 74 |         exit 1
 75 |     }
 76 |     
 77 |     # Getting path to ActiveDirectory Assemblies
 78 |     # If the module count is greater than 1 find the latest version
 79 |     if ($AadModule.count -gt 1) {
 80 |         $Latest_Version = ($AadModule | Select-Object version | Sort-Object)[-1]
 81 |         $aadModule = $AadModule | Where-Object { $_.version -eq $Latest_Version.version }
 82 |         # Checking if there are multiple versions of the same module found
 83 |         if ($AadModule.count -gt 1) {
 84 |             $aadModule = $AadModule | Select-Object -Unique
 85 |         }
 86 |         $adal = Join-Path $AadModule.ModuleBase "Microsoft.IdentityModel.Clients.ActiveDirectory.dll"
 87 |         $adalforms = Join-Path $AadModule.ModuleBase "Microsoft.IdentityModel.Clients.ActiveDirectory.Platform.dll"
 88 |     }
 89 |     else {
 90 |         $adal = Join-Path $AadModule.ModuleBase "Microsoft.IdentityModel.Clients.ActiveDirectory.dll"
 91 |         $adalforms = Join-Path $AadModule.ModuleBase "Microsoft.IdentityModel.Clients.ActiveDirectory.Platform.dll"
 92 |     }
 93 |     [System.Reflection.Assembly]::LoadFrom($adal) | Out-Null
 94 |     [System.Reflection.Assembly]::LoadFrom($adalforms) | Out-Null
 95 |     $clientId = "d1ddf0e4-d672-4dae-b554-9d5bdfd93547"
 96 |     $redirectUri = "urn:ietf:wg:oauth:2.0:oob"
 97 |     $resourceAppIdURI = "https://graph.microsoft.com"
 98 |     $authority = "https://login.microsoftonline.com/$script:Tenant"
 99 |     
100 |     try {
101 |         $authContext = New-Object "Microsoft.IdentityModel.Clients.ActiveDirectory.AuthenticationContext" -ArgumentList $authority
102 |         # https://msdn.microsoft.com/en-us/library/azure/microsoft.identitymodel.clients.activedirectory.promptbehavior.aspx
103 |         # Change the prompt behaviour to force credentials each time: Auto, Always, Never, RefreshSession
104 |         $platformParameters = New-Object "Microsoft.IdentityModel.Clients.ActiveDirectory.PlatformParameters" -ArgumentList "Auto"
105 |         $userId = New-Object "Microsoft.IdentityModel.Clients.ActiveDirectory.UserIdentifier" -ArgumentList ($User, "OptionalDisplayableId")
106 |         $authResult = $authContext.AcquireTokenAsync($resourceAppIdURI, $clientId, $redirectUri, $platformParameters, $userId).Result
107 |         # If the accesstoken is valid then create the authentication header
108 |         if ($authResult.AccessToken) {
109 |             # Creating header for Authorization token
110 |             $authHeader = @{
111 |                 'Content-Type'  = 'application/json'
112 |                 'Authorization' = "Bearer " + $authResult.AccessToken
113 |                 'ExpiresOn'     = $authResult.ExpiresOn
114 |             }
115 |             return $authHeader
116 |         }
117 |         else {
118 |             Write-Host
119 |             Write-Host "Authorization Access Token is null, please re-run authentication..." -ForegroundColor Red
120 | 
121 |             break
122 |         }
123 |     }
124 |     catch {
125 |         write-host $_.Exception.Message -f Red
126 |         write-host $_.Exception.ItemName -f Red
127 |         write-host
128 |         Write-host $_.Exception.Message -LogLevel 3
129 |         Write-host $_.Exception.ItemName -LogLevel 3
130 |         break
131 |     }
132 | }
133 | 
134 | Function Update-AuthToken() {
135 |     # Checking if authToken exists before running authentication
136 |     if ($global:authToken) {
137 |         # Setting DateTime to Universal time to work in all timezones
138 |         $DateTime = (Get-Date).ToUniversalTime()
139 |         # If the authToken exists checking when it expires
140 |         $TokenExpires = ($authToken.ExpiresOn.datetime - $DateTime).Minutes
141 |         if ($TokenExpires -le 0) {
142 |             write-host "Authentication Token expired" $TokenExpires "minutes ago" -ForegroundColor Yellow
143 | 
144 |             # Defining User Principal Name if not present
145 |             if ($null -eq $script:User -or $script:User -eq "") {
146 |                 $script:User = Read-Host -Prompt "Please specify your user principal name for Azure Authentication"
147 |                 Write-host "Connecting using user: $($script:User)"
148 | 
149 |             }
150 |             Write-host "Updating the authToken for the Graph API"
151 |             $global:authToken = Get-AuthToken -User $User
152 |         }
153 |     }
154 |     # Authentication doesn't exist, calling Get-AuthToken function
155 |     else {
156 |         if ($null -eq $script:User -or $script:User -eq "") {
157 |             $script:User = Read-Host -Prompt "Please specify your user principal name for Azure Authentication"
158 |             Write-host "Connecting using user: $($script:User)"
159 | 
160 |         }
161 |         # Getting the authorization token
162 |         Write-host "Updating the authToken for the Graph API"
163 |         $global:authToken = Get-AuthToken -User $script:User
164 |     }
165 | }
166 | Update-AuthToken
167 | 
168 | # https://docs.microsoft.com/en-us/graph/api/intune-shared-devicemanagementscript-assign?view=graph-rest-beta
169 | 
170 | $assignmentsuri = "https://graph.microsoft.com/beta/deviceManagement/deviceManagementScripts/$ScriptID/assignments"
171 | 
172 | $Respons = (Invoke-RestMethod -Uri $assignmentsuri -Headers $authToken -Method Get).value
173 | 
174 | $requestBody = @{
175 |     deviceManagementScriptAssignments = @()
176 | }
177 | #Check if there already are assigned groups to the script
178 | if ($Respons) {
179 |     foreach ($group in $($Respons)) {
180 |         # Get group assignment
181 |         if ($group.target."@odata.type" -eq "#microsoft.graph.groupAssignmentTarget") {
182 |             # Verify so the new groupID isn't already assigned.
183 |             if ($group.target.groupId -ne $groupID) {
184 |                 $requestBody.deviceManagementScriptAssignments += @{
185 |                     "target" = $group.target
186 |                 }
187 |             }
188 |             else {
189 |                 Write-Warning "A group with ID=$groupID is already assigned to '$ScriptID'"
190 |             }
191 |         }
192 |     
193 |         # Get exclusion group assignment
194 |         if ($group.target."@odata.type" -eq "#microsoft.graph.exclusionGroupAssignmentTarget") {
195 |             $requestBody.deviceManagementScriptAssignments += @{
196 |                 "target" = $group.target
197 |             }
198 |         } 
199 |     }
200 | }
201 | 
202 | $requestBody.deviceManagementScriptAssignments += @{
203 |     "target" = @{
204 |         "@odata.type" = "#microsoft.graph.groupAssignmentTarget"
205 |         "groupId"     = "$groupID"
206 |     }
207 | }
208 | 
209 | $restore = $requestBody | ConvertTo-Json -Depth 99
210 | $assignuri = "https://graph.microsoft.com/beta/deviceManagement/deviceManagementScripts/$ScriptID/assign"
211 | Invoke-RestMethod -Uri $assignuri -Headers $authToken -Method post -Body $restore -ContentType "application/json; charset=utf-8" 


--------------------------------------------------------------------------------
/Other/Get-EdgeEnterpriseMSI.ps1:
--------------------------------------------------------------------------------
  1 | <#
  2 | .SYNOPSIS
  3 |   Get-EdgeEnterpriseMSI
  4 | 
  5 | .DESCRIPTION
  6 |   Imports all device configurations in a folder to a specified tenant
  7 | 
  8 | .PARAMETER Channel
  9 |   Channel to download, Valid Options are: Dev, Beta, Stable, EdgeUpdate, Policy.
 10 | 
 11 | .PARAMETER Platform
 12 |   Platform to download, Valid Options are: Windows or MacOS, if using channel "Policy" this should be set to "any"
 13 |   Defaults to Windows if not set.
 14 | 
 15 | .PARAMETER Architecture
 16 |   Architecture to download, Valid Options are: x86, x64, arm64, if using channel "Policy" this should be set to "any"
 17 |   Defaults to x64 if not set.
 18 | 
 19 | .PARAMETER Version
 20 |   If set the script will try and download a specific version. If not set it will download the latest.
 21 | 
 22 | .PARAMETER Folder
 23 |   Specifies the Download folder
 24 | 
 25 | .PARAMETER Force
 26 |   Overwrites the file without asking.
 27 | 
 28 | .NOTES
 29 |   Version:        1.2
 30 |   Author:         Mattias Benninge
 31 |   Creation Date:  2020-07-01
 32 | 
 33 |   Version history:
 34 | 
 35 |   1.0 -   Initial script development
 36 |   1.1 -   Fixes and improvements by @KarlGrindon
 37 |           - Script now handles multiple files for e.g. MacOS Edge files
 38 |           - Better error handling and formating
 39 |           - URI Validation
 40 |   1.2 -   Better compability on servers (force TLS and remove dependency to IE)
 41 | 
 42 |   
 43 |   https://docs.microsoft.com/en-us/mem/configmgr/apps/deploy-use/deploy-edge
 44 | 
 45 | .EXAMPLE
 46 |   
 47 |   Download the latest version for the Beta channel and overwrite any existing file
 48 |   .\Get-EdgeEnterpriseMSI.ps1 -Channel Beta -Folder D:\SourceCode\PowerShell\Div -Force
 49 | 
 50 | #>
 51 | [CmdletBinding()]
 52 | param(
 53 |   [Parameter(Mandatory = $True, HelpMessage = 'Channel to download, Valid Options are: Dev, Beta, Stable, EdgeUpdate, Policy')]
 54 |   [ValidateSet('Dev', 'Beta', 'Stable', 'EdgeUpdate', 'Policy')]
 55 |   [string]$Channel,
 56 |   
 57 |   [Parameter(Mandatory = $True, HelpMessage = 'Folder where the file will be downloaded')]
 58 |   [ValidateNotNullOrEmpty()]
 59 |   [string]$Folder,
 60 | 
 61 |   [Parameter(Mandatory = $false, HelpMessage = 'Platform to download, Valid Options are: Windows or MacOS')]
 62 |   [ValidateSet('Windows', 'MacOS', 'any')]
 63 |   [string]$Platform = "Windows",
 64 | 
 65 |   [Parameter(Mandatory = $false, HelpMessage = "Architecture to download, Valid Options are: x86, x64, arm64, any")]
 66 |   [ValidateSet('x86', 'x64', 'arm64', 'any')]
 67 |   [string]$Architecture = "x64",
 68 | 
 69 |   [parameter(Mandatory = $false, HelpMessage = "Specifies which version to download")]
 70 |   [ValidateNotNullOrEmpty()]
 71 |   [string]$ProductVersion,
 72 | 
 73 |   [parameter(Mandatory = $false, HelpMessage = "Overwrites the file without asking")]
 74 |   [Switch]$Force
 75 | )
 76 | 
 77 | $ErrorActionPreference = "Stop"
 78 | 
 79 | $edgeEnterpriseMSIUri = 'https://edgeupdates.microsoft.com/api/products?view=enterprise'
 80 | 
 81 | # Validating parameters to reduce user errors
 82 | if ($Channel -eq "Policy" -and ($Architecture -ne "Any" -or $Platform -ne "Any")) {
 83 |   Write-Warning ("Channel 'Policy' requested, but either 'Architecture' and/or 'Platform' is not set to 'Any'. 
 84 |                   Setting Architecture and Platform to 'Any'")
 85 | 
 86 |   $Architecture = "Any"
 87 |   $Platform = "Any"
 88 | } 
 89 | elseif ($Channel -ne "Policy" -and ($Architecture -eq "Any" -or $Platform -eq "Any")) {
 90 |   throw "If Channel isn't set to policy, architecture and/or platform can't be set to 'Any'"
 91 | }
 92 | elseif ($Channel -eq "EdgeUpdate" -and ($Architecture -ne "x86" -or $Platform -eq "Windows")) {
 93 |   Write-Warning ("Channel 'EdgeUpdate' requested, but either 'Architecture' is not set to x86 and/or 'Platform' 
 94 |                   is not set to 'Windows'. Setting Architecture to 'x86' and Platform to 'Windows'")
 95 | 
 96 |   $Architecture = "x86"
 97 |   $Platform = "Windows"
 98 | }
 99 | 
100 | Write-Host "Enabling connection over TLS for better compability on servers" -ForegroundColor Green
101 | [Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls -bor [Net.SecurityProtocolType]::Tls11 -bor [Net.SecurityProtocolType]::Tls12
102 | 
103 | # Test if HTTP status code 200 is returned from URI
104 | try {
105 |   Invoke-WebRequest $edgeEnterpriseMSIUri -UseBasicParsing | Where-Object StatusCode -match 200 | Out-Null
106 | }
107 | catch {
108 |   throw "Unable to get HTTP status code 200 from $edgeEnterpriseMSIUri. Does the URL still exist?"
109 | }
110 | 
111 | Write-Host "Getting available files from $edgeEnterpriseMSIUri" -ForegroundColor Green
112 | 
113 | # Try to get JSON data from Microsoft
114 | try {
115 |   $response = Invoke-WebRequest -Uri $edgeEnterpriseMSIUri -Method Get -ContentType "application/json" -UseBasicParsing -ErrorVariable InvokeWebRequestError
116 |   $jsonObj = ConvertFrom-Json $([String]::new($response.Content))
117 |   Write-Host "Succefully retrived data" -ForegroundColor Green
118 | }
119 | catch {
120 |   throw "Could not get MSI data: $InvokeWebRequestError"
121 | }
122 | 
123 | # Alternative is to use Invoke-RestMethod to get a Json object directly
124 | # $jsonObj = Invoke-RestMethod -Uri "https://edgeupdates.microsoft.com/api/products?view=enterprise" -UseBasicParsing
125 | 
126 | $selectedIndex = [array]::indexof($jsonObj.Product, "$Channel")
127 | 
128 | if (-not $ProductVersion) {
129 |   try {
130 |     Write-host "No version specified, getting the latest for $Channel" -ForegroundColor Green
131 |     $selectedVersion = (([Version[]](($jsonObj[$selectedIndex].Releases |
132 |             Where-Object { $_.Architecture -eq $Architecture -and $_.Platform -eq $Platform }).ProductVersion) |
133 |         Sort-Object -Descending)[0]).ToString(4)
134 |   
135 |     Write-Host "Latest Version for channel $Channel is $selectedVersion`n" -ForegroundColor Green
136 |     $selectedObject = $jsonObj[$selectedIndex].Releases |
137 |     Where-Object { $_.Architecture -eq $Architecture -and $_.Platform -eq $Platform -and $_.ProductVersion -eq $selectedVersion }
138 |   }
139 |   catch {
140 |     throw "Unable to get object from Microsoft. Check your parameters and refer to script help."
141 |   }
142 | }
143 | else {
144 |   Write-Host "Matching $ProductVersion on channel $Channel" -ForegroundColor Green
145 |   $selectedObject = ($jsonObj[$selectedIndex].Releases |
146 |     Where-Object { $_.Architecture -eq $Architecture -and $_.Platform -eq $Platform -and $_.ProductVersion -eq $ProductVersion })
147 | 
148 |   if (-not $selectedObject) {
149 |     throw "No version matching $ProductVersion found in $channel channel for $Architecture architecture."
150 |   }
151 |   else {
152 |     Write-Host "Found matching version`n" -ForegroundColor Green
153 |   }
154 | }
155 | 
156 | 
157 | if (Test-Path $Folder) {
158 |   foreach ($artifacts in $selectedObject.Artifacts) {
159 |     # Not showing the progress bar in Invoke-WebRequest is quite a bit faster than default
160 |     $ProgressPreference = 'SilentlyContinue'
161 |     
162 |     Write-host "Starting download of: $($artifacts.Location)" -ForegroundColor Green
163 |     # Work out file name
164 |     $fileName = Split-Path $artifacts.Location -Leaf
165 | 
166 |     if (Test-Path "$Folder\$fileName" -ErrorAction SilentlyContinue) {
167 |       if ($Force) {
168 |         Write-Host "Force specified. Will attempt to download and overwrite existing file." -ForegroundColor Green
169 |         try {
170 |           Invoke-WebRequest -Uri $artifacts.Location -OutFile "$Folder\$fileName" -UseBasicParsing
171 |         }
172 |         catch {
173 |           throw "Attempted to download file, but failed: $error[0]"
174 |         }    
175 |       }
176 |       else {
177 |         # CR-someday: There should be an evaluation of the file version, if possible. Currently the function only
178 |         # checks if a file of the same name exists, not if the versions differ
179 |         Write-Host "$Folder\$fileName already exists!" -ForegroundColor Yellow
180 | 
181 |         do {
182 |           $overWrite = Read-Host -Prompt "Press Y to overwrite or N to quit."
183 |         }
184 |         # -notmatch is case insensitive
185 |         while ($overWrite -notmatch '^y$|^n$')
186 |         
187 |         if ($overWrite -match '^y$') {
188 |           Write-Host "Starting Download" -ForegroundColor Green
189 |           try {
190 |             Invoke-WebRequest -Uri $artifacts.Location -OutFile "$Folder\$fileName" -UseBasicParsing
191 |           }
192 |           catch {
193 |             throw "Attempted to download file, but failed: $error[0]"
194 |           }
195 |         }
196 |         else {
197 |           Write-Host "File already exists and user chose not to overwrite, exiting script." -ForegroundColor Red
198 |           exit
199 |         }
200 |       }
201 |     }
202 |     else {
203 |       Write-Host "Starting Download" -ForegroundColor Green
204 |       try {
205 |         Invoke-WebRequest -Uri $artifacts.Location -OutFile "$Folder\$fileName" -UseBasicParsing
206 |       }
207 |       catch {
208 |         throw "Attempted to download file, but failed: $error[0]"
209 |       }
210 |     }
211 |     if (((Get-FileHash -Algorithm $artifacts.HashAlgorithm -Path "$Folder\$fileName").Hash) -eq $artifacts.Hash) {
212 |       Write-Host "Calculated checksum matches known checksum`n" -ForegroundColor Green
213 |     }
214 |     else {
215 |       Write-Warning "Checksum mismatch!"
216 |       Write-Warning "Expected Hash: $($artifacts.Hash)"
217 |       Write-Warning "Downloaded file Hash: $((Get-FileHash -Algorithm $($artifacts.HashAlgorithm) -Path "$Folder\$fileName").Hash)`n"
218 |     }
219 |   }
220 | }
221 | else {
222 |   throw "Folder $Folder does not exist"
223 | }
224 | Write-Host "-- Script Completed: File Downloaded -- " -ForegroundColor Green


--------------------------------------------------------------------------------
/FSRM/New-FSRMServer.ps1:
--------------------------------------------------------------------------------
  1 | <#
  2 | .SYNOPSIS
  3 |   New-FSRMServer
  4 | 
  5 | .DESCRIPTION
  6 |   Install and configures the FSRM role and activates File Screen on a Windows Server
  7 | 
  8 | .INPUTS
  9 |   None
 10 | 
 11 | .OUTPUTS
 12 |   None
 13 | 
 14 | .NOTES
 15 |   Version:        1.0
 16 |   Author:         Mattias Benninge
 17 |   Creation Date:  2017-05-24
 18 |   Purpose/Change: Initial script development
 19 | 
 20 | #>
 21 | 
 22 | #region ---------------------------------------------------[Declarations]----------------------------------------------------------
 23 | 
 24 | #Any Global Declarations go here
 25 | $maxlogfilesize = 5Mb
 26 | 
 27 | #Function Declarations
 28 | # Extensions that will block user access to the share
 29 | $ransompattern = @("*.wnry", "*.wcry", "*.wncry", "*.wncryt")
 30 | 
 31 | # Disk drives that will be excluded from File Screen
 32 | [array]$diskexeptions= "C","T"
 33 | 
 34 | # General FSRM Settings
 35 | #-------------
 36 | $SMTPServer = "smtp.corp.SCCMTest.org"
 37 | $SMTPFrom = "noreply@corp.SCCMTest.org"
 38 | $AdminEmail = "helpdesk@corp.SCCMTest.org"
 39 | #-------------
 40 | 
 41 | # Event settings for the "Ransomware template
 42 | #-------------
 43 | $EventCommand = 'C:\Windows\System32\cmd.exe'
 44 | $EventCommandParam = '/c "C:\RansomwareBlockSmb\StartRansomwareBlockSmb.cmd"'
 45 | $EventCommandWorkDir = "C:\Windows\System32\"
 46 | 
 47 | $EventLogEntry = "[Source Io Owner];[Source File Path];[Violated File Group]"
 48 | 
 49 | $SMTPTo = "[Admin Email];[Source Io Owner Email]" 
 50 | $emailSubject = "Security Announcement from the IT-Department"
 51 | $emailBody = @"
 52 | Your account have been locked out. The reason is that you or someone in your name have tried to change a file extension to an extension identified as ransomware.
 53 | 
 54 | DO THE FOLLOWING!
 55 | 1. Shut down your computer immediately
 56 | 2. Have your logon name and computer name ready.
 57 | 3. Contact Helpdesk immediately and inform them that you have received this message.
 58 | 
 59 | TECHNICAL INFORMATION FOR HELPDESK!
 60 | File: [Source File Path]
 61 | Server: [Server]
 62 | Username: [Source Io Owner]
 63 | 
 64 | /Your IT-Department
 65 | "@
 66 | #-------------
 67 | 
 68 | #endregion
 69 | #region ---------------------------------------------------[Functions]------------------------------------------------------------
 70 | 
 71 | #region Logging: Functions used for Logging, do not edit!
 72 | Function Start-Log{
 73 | [CmdletBinding()]
 74 |     param (
 75 |         [ValidateScript({ Split-Path $_ -Parent | Test-Path })]
 76 | 	    [string]$FilePath
 77 |     )
 78 | 	
 79 |     try
 80 |     {
 81 |         if (!(Test-Path $FilePath))
 82 | 	    {
 83 | 	        ## Create the log file
 84 | 	        New-Item $FilePath -Type File | Out-Null
 85 | 	    }
 86 | 		
 87 | 	    ## Set the global variable to be used as the FilePath for all subsequent Write-Log
 88 | 	    ## calls in this session
 89 | 	    $global:ScriptLogFilePath = $FilePath
 90 |     }
 91 |     catch
 92 |     {
 93 |         Write-Error $_.Exception.Message
 94 |     }
 95 | }
 96 | 
 97 | Function Write-Log{
 98 | param (
 99 |     [Parameter(Mandatory = $true)]
100 |     [string]$Message,
101 | 		
102 |     [Parameter()]
103 |     [ValidateSet(1, 2, 3)]
104 |     [int]$LogLevel = 1
105 |     )    
106 |     $TimeGenerated = "$(Get-Date -Format HH:mm:ss).$((Get-Date).Millisecond)+000"
107 |     $Line = '<![LOG[{0}]LOG]!><time="{1}" date="{2}" component="{3}" context="" type="{4}" thread="" file="">'
108 |     
109 |     if($MyInvocation.ScriptName){
110 |         $LineFormat = $Message, $TimeGenerated, (Get-Date -Format MM-dd-yyyy), "$($MyInvocation.ScriptName | Split-Path -Leaf):$($MyInvocation.ScriptLineNumber)", $LogLevel
111 |     }
112 |     else { #if the script havn't been saved yet and does not have a name this will state unknown.
113 |         $LineFormat = $Message, $TimeGenerated, (Get-Date -Format MM-dd-yyyy), "Unknown", $LogLevel
114 |     }
115 |     $Line = $Line -f $LineFormat
116 | 
117 |     #Make sure the logfile do not exceed the $maxlogfilesize
118 |     if (Test-Path $ScriptLogFilePath) { 
119 |         if((Get-Item $ScriptLogFilePath).length -ge $maxlogfilesize){
120 |             If(Test-Path "$($ScriptLogFilePath.Substring(0,$ScriptLogFilePath.Length-1))_")
121 |             {
122 |                 Remove-Item -path "$($ScriptLogFilePath.Substring(0,$ScriptLogFilePath.Length-1))_" -Force
123 |             }
124 |             Rename-Item -Path $ScriptLogFilePath -NewName "$($ScriptLogFilePath.Substring(0,$ScriptLogFilePath.Length-1))_" -Force
125 |         }
126 |     }
127 | 
128 |     Add-Content -Value $Line -Path $ScriptLogFilePath
129 | 
130 | }
131 | #endregion
132 | 
133 | # Add functions Here
134 | 
135 | Function Get-MyModule { 
136 | 	Param([string]$name)
137 |  
138 | 	if(-not(Get-Module -name $name)) 
139 | 		{ 
140 | 		if(Get-Module -ListAvailable | 
141 | 			Where-Object { $_.name -eq $name }) 
142 | 			{ 
143 | 				Import-Module -Name $name 
144 | 				$true 
145 | 			} #end if module available then import 
146 | 		else { $false } #module not available 
147 | 		} # end if not module 
148 | 	else { $true } #module already loaded 
149 | } #end function get-MyModule 
150 | 	
151 | 
152 | Function New-FSRMServer{
153 | 
154 |     $OSVersion = (Get-CimInstance Win32_OperatingSystem).Version -split "\."
155 |     Write-Log -Message "OS Version = $((Get-CimInstance Win32_OperatingSystem).Version)"
156 |     If([Int]("{0:N1}" -f [Int]($OSVersion[0]+"."+$OSVersion[1])) -ge 6.2){
157 |         $FeatureOutput = Install-WindowsFeature –Name FS-Resource-Manager –IncludeManagementTools
158 |         Write-Log -Message "FS-Resource-Manager installed, Success=$($FeatureOutput.Success) and with Exit Code=$($FeatureOutput.ExitCode)" -LogLevel 1
159 |     }
160 |     elseif([Int]("{0:N1}" -f [Int]($OSVersion[0]+"."+$OSVersion[1])) -le 5.9)
161 |     {
162 |         Write-Log -Message "OS Version not supportet for FSRM, Exiting!!" -LogLevel 3
163 |         exit
164 |     }
165 |     else
166 |     {
167 |         Get-MyModule "ServerManager"
168 |         If(!((Get-WindowsFeature | Where-Object {$_.Name -eq "FS-FileServer"}).Installed)){Add-WindowsFeature FS-FileServer}
169 |         If(!((Get-WindowsFeature | Where-Object {$_.Name -eq "FS-Resource-Manager"}).Installed)){Add-WindowsFeature FS-Resource-Manager}
170 |         Write-Log -Message "FS-Resource-Manager installed"
171 |     }
172 | 
173 |     try{
174 |         New-FsrmFileGroup -Name "Ransomware_Extensions" –IncludePattern $ransompattern -ErrorAction Stop |Out-Null
175 |         Write-Log -Message "Created Ransomware File Group"
176 |         }
177 |         catch
178 |         {
179 |             Write-Log -Message $_.Exception.Message -LogLevel 3
180 |         }
181 | 
182 |     try{
183 |         set-fsrmSetting -AdminEmailAddress $AdminEmail -SmtpServer $SMTPServer -FromEmailAddress $SMTPFrom -ErrorAction Stop |Out-Null
184 |         Write-Log -Message "Changed FSRM Settings to: AdminEmailAddress $AdminEmail, SmtpServer $SMTPServer, FromEmailAddress $SMTPFrom"
185 |     }
186 |     catch
187 |     {
188 |         Write-Log -Message $_.Exception.Message -LogLevel 3  
189 |     }
190 |     #set-FsrmFileGroup -name "Ransomware_Extensions" -IncludePattern @((Invoke-WebRequest -Uri "https://fsrm.experiant.ca/api/v1/combined" -UseBasicParsing).content | convertfrom-json | % {$_.filters}) 
191 | 
192 |     #Create Notification types
193 |     try{
194 |         $global:emailnotification = New-FsrmAction -Type Email -Subject $emailSubject -Body $emailBody -RunLimitInterval 60 -MailTo $SMTPTo -ErrorAction Stop
195 |         $global:eventnotification = New-FsrmAction -Type Event -Body $EventLogEntry -RunLimitInterval 0 -EventType Warning -ErrorAction Stop
196 |         $global:commandnotification = New-FsrmAction -Type Command -Command $EventCommand -CommandParameters $EventCommandParam -SecurityLevel LocalSystem -RunLimitInterval 0 -WorkingDirectory $EventCommandWorkDir -ShouldLogError -KillTimeOut 0 -ErrorAction Stop
197 |         Write-Log -Message "Created notifications Successfully."
198 |     }
199 |     catch
200 |     {
201 |         Write-Log -Message $_.Exception.Message -LogLevel 3  
202 |     }        
203 |     
204 |     # Add them to an array
205 |     [Ciminstance[]]$notificationArray = $global:emailnotification,$global:eventnotification,$global:commandnotification
206 | 
207 |     #Create a new template
208 |     try
209 |     {
210 |         new-FsrmFileScreenTemplate -Name "Ransomware" -Description "Known Ransomware File Extesions" -IncludeGroup "Ransomware_Extensions" -Active: $true -Notification $notificationArray -ErrorAction Stop |Out-Null
211 |         Write-Log -Message "Created new FSRM Template Ransomware"
212 |     }
213 |     catch
214 |     {
215 |         Write-Log -Message $_.Exception.Message -LogLevel 3  
216 |     }    
217 |     
218 |     Write-Log -Message "Setting diskexeptions to: $diskexeptions File Screen will not be active on these volumes"
219 |     
220 |     [string[]]$diskLetters = (Get-Volume |Where-Object {$_.DriveType -eq "Fixed"}).DriveLetter
221 |     $diskLetters = $diskLetters | ? {$_ -ne ""}
222 |     [array]$activeLetters = Compare-Object -ReferenceObject $diskLetters  -DifferenceObject $diskexeptions -PassThru | Where-Object {$_.SideIndicator -eq '<='}
223 |     
224 |     Write-Log -Message "File Screen will be activated on these Drives: $activeLetters"
225 | 
226 |     
227 |     foreach($al in $activeLetters)
228 |     {
229 |         if($al){
230 |             try{
231 |                 New-FsrmFileScreen -Active -Template "Ransomware" -Path "$($al):\" -ErrorAction Stop |out-null
232 |                 Write-Log -Message "File Screen 'Ransomware' was created on drive $($al):\"
233 |             }
234 |             catch
235 |             {
236 |                 Write-Log -Message $_.Exception.Message -LogLevel 3  
237 |             }   
238 |         }
239 |     }
240 | }
241 | 
242 | #endregion
243 | #-----------------------------------------------------------[Execution]------------------------------------------------------------
244 | #Default logging to %temp%\scriptname.log, change if needed.
245 | Start-Log -FilePath "C:\New-FSRMServer.log"
246 | # Syntax is:
247 | # Loglevel 1 is default and does not need to be specified
248 | # Write-Log -Message "<message goes here>"
249 | # Write-Log -Message "<message goes here>" -LogLevel 2
250 | 
251 | #Script Execution goes here
252 | New-FSRMServer
253 | #Invoke-Command –ComputerName VANSRV532 –FilePath .\New-FSRMServer.ps1


--------------------------------------------------------------------------------
/ConfigMgr/New-CMMaintenanceWindow.ps1:
--------------------------------------------------------------------------------
  1 | <#
  2 | 
  3 | .SYNOPSIS 
  4 | Creates a Maintenace Window in Configuration Manager.
  5 | 
  6 | .DESCRIPTION 
  7 | This script will create Maintenace Windows in Configuration Manager 2012 (or 2007).
  8 | It will create a non-reoccuring Maintenace Window with the specified options.
  9 | There is also an option to create Maintenace Windows based on "Patch Tuesday" or with 
 10 | an offset of days from "Patch Tuesday". This is useful when for example second Thursday of a month
 11 | occurs before second Tuesday (see may 2013 as an example).
 12 | 
 13 | .PARAMETER SiteCode
 14 |     Sitecode for SCCM
 15 | .PARAMETER MaintenanceWindowName
 16 |     This is what the Maintenance Window will be called.
 17 | .PARAMETER AddMaintenanceWindowNameMonth
 18 |     If this is used the month number, month name and year will be added to the Maintenance Window Name
 19 |     For example: <MaintenanceWindowName> "01 january 2013"
 20 |     
 21 | .PARAMETER MaintenanceWindowDescription
 22 |     Optional, this is the description of the Maintenace Window (Will be overwritten if any changes is done in the GUI).
 23 | .PARAMETER CollectionID
 24 |     SCCM Collection ID where the Maintenace Window will be created
 25 | .PARAMETER patchTuesday
 26 |     If this is used date will based on patch tuesday. If used without <-nextmonth> Maintenace Windows will be created for every month.
 27 | .PARAMETER nextmonth
 28 |     Limits the creation of Maintenace Windows to one which will be the following month.
 29 | .PARAMETER adddays
 30 |     This is used together with patchTuesday to create an offset counting from patch Tuesday. For example if you want to create a Maintenace Window
 31 |     every Thursday after patch Tuesday enter "-adddays 2"
 32 | .PARAMETER StartYear
 33 |     Year for Maintenace Window to be created
 34 | .PARAMETER StartMonth
 35 |     Month for Maintenace Window to be created
 36 | .PARAMETER StartDay
 37 |     Day for Maintenace Window to be created
 38 | .PARAMETER StartHour
 39 |     Hour for Maintenace Window to be created
 40 | .PARAMETER StartMinute
 41 |     Minute for Maintenace Window to be created
 42 | .PARAMETER HourDuration
 43 |     Defines how many hours the Maintenace Window will last, maximum 24 hours
 44 | .PARAMETER MinuteDuration
 45 |     Define how many minutes Maintenace Window will last. Total lenght of the Maintenace Window must be at least 5 minutes.
 46 | .PARAMETER IsGMT
 47 | 	Enables the GMT option (Coordinated Universal Time UTC) on the Maintenace Window
 48 | .PARAMETER SWType
 49 |     Sets the type of Maintainence Windows, default is General. Valid values are General, Updates and OSD
 50 | 
 51 | .EXAMPLE
 52 | New-CMMaintenanceWindow.ps1 -SiteCode EVL -MaintenanceWindowName "MW Patch Tuesday " -AddMaintenanceWindowNameMonth -CollectionID "EVL00001" -patchTuesday -nextmonth -StartHour 21 -StartMinute 0 -HourDuration 4 -MinuteDuration 0
 53 | 
 54 | This will create a Maintenance Window for next month on the same day as Patch Tuesday starting 21:00 and lasting 4 hours.
 55 | 
 56 | .EXAMPLE
 57 | New-CMMaintenanceWindow.ps1 -SiteCode EVL -MaintenanceWindowName "MW Patch Tuesday " -AddMaintenanceWindowNameMonth -CollectionID "EVL00001" -patchTuesday -adddays 9 -StartYear -StartHour 21 -StartMinute 0 -HourDuration 4 -MinuteDuration 0
 58 | 
 59 | This will create a Maintenance Window for every month 2014 on the second Thursday after Patch Tuesday starting 21:00 and lasting 4 hours.
 60 | 
 61 | 
 62 | .EXAMPLE 
 63 | New-CMMaintenanceWindow.ps1 -SiteCode EVL -MaintenanceWindowName "MW Patch Window 8th April" -CollectionID "EVL00001" -StartYear 2013 -StartMonth 04 -StartDay 08 -StartHour 20 -StartMinute 30 -HourDuration 2 -MinuteDuration 30
 64 | 
 65 | This will create a Maintenance Window for 2013-04-08 starting 20.30 and lasting 2 hours and 30 minutes.
 66 | 
 67 | .EXAMPLE 
 68 | New-CMMaintenanceWindow.ps1 -SiteCode EVL -MaintenanceWindowName "MW Patch Window Today" -CollectionID "EVL00001" -StartHour 20 -StartMinute 30 -HourDuration 2 -MinuteDuration 30
 69 | 
 70 | This will create a Maintenance Window for today starting 20.30 and lasting 2 hours and 30 minutes.
 71 | 
 72 | .NOTES 
 73 | PowerShell Source File -- New-CMMaintenanceWindow.ps1
 74 | 
 75 | AUTHOR: 	Mattias Benninge
 76 | MODIFIED BY: 
 77 | COMPANY: 
 78 | DATE: 2013-04-28
 79 | VERSION: 04
 80 | SCRIPT LANGUAGE: PowerShell
 81 | LAST UPDATE: 
 82 | v1.1 2013-04-28 Added switch for IsGMT
 83 | v1.2 2014-12-19 Rewrote part of the code to solve issues when UTC convertion messed up the time and calculation of patchtuesday.
 84 | v1.3 2017-01-19 Added option to specify Maintainence Window typ.
 85 | 
 86 | KEYWORDS: PowerShell, SCCM, 
 87 | DESCRIPTION: 
 88 | 
 89 | KNOWN ISSUES: 
 90 | 
 91 | COMMENT: 
 92 | 
 93 | .LINK 
 94 | https://github.com/matbe/PowerShell/blob/master/ConfigMgr/New-CMMaintenanceWindow.ps1
 95 | 		
 96 | #>
 97 | 
 98 | [CmdletBinding()]
 99 | param(
100 | 	[parameter(Mandatory=$true)]
101 | 	[string]$SiteCode,
102 | 	[parameter(Mandatory=$true)]
103 | 	[string]$MaintenanceWindowName,
104 |     [switch]$AddMaintenanceWindowNameMonth,
105 | 	[string]$MaintenanceWindowDescription,
106 | 	[parameter(Mandatory=$true, ValueFromPipeline=$true)]
107 | 	[string]$CollectionID,
108 | 
109 | 	# Will create SW based on PatchTuesday
110 | 	[switch]$patchTuesday,
111 | 	[switch]$nextmonth, 
112 | 	# Will create an offset of days calculated from patch Tuesday, 
113 | 	# if this is not done sometimes for example third Thursday of the month will occur before third tuesday.
114 | 	[int]$adddays = 0,
115 | 	
116 |     # Set values for When service windows will start, if not specified it will start at current time
117 | 	# If Patch Tuesday switch is used only $StartYear, $starthour and $startminute will be honored.
118 |     [parameter(ValueFromPipeline=$true)] 
119 | 	[int]$StartYear = (Get-Date).Year,
120 | 	[int]$StartMonth = "{0:00}" -f (Get-Date).Month,
121 | 	[int]$StartDay = "{0:00}" -f (Get-Date).Day,
122 | 	[int]$StartHour = "{0:00}" -f (Get-Date).Hour,
123 |     [int]$StartMinute = "{0:00}" -f (Get-Date).Minute,
124 | 
125 | 
126 |     # Sets the length of the service window (min length 5 mins, max 24 hours)
127 |     [parameter(Mandatory=$true)]
128 |     [int]$HourDuration = 0,
129 |     [parameter(Mandatory=$true)]
130 |     [int]$MinuteDuration = 0,
131 | 	
132 | 	# If enabled MW will be created with GMT/UTC option
133 | 	[switch]$IsGMT,
134 | 
135 |     #Specifies the MW Type
136 |     [Parameter(Mandatory=$false,ValueFromPipeline=$true)] 
137 |     [ValidateSet('General','Updates','OSD')]
138 |     [System.String]$swtype = "General"
139 | 
140 | )
141 | 
142 | #Converts $swtype (MW Type) into a valid integer
143 | switch ($swtype)
144 | {
145 |     'General' {$swtypeint=1}
146 |     'Updates' {$swtypeint=4}
147 |     'OSD' {$swtypeint=5}
148 |     Default {$swtypeint=1}
149 | }
150 | 
151 | ### Functions Start Here ###
152 | function get-secondTuesdayDate {            
153 | param(
154 | [datetime]$date
155 | )            
156 |     switch ($date.DayOfWeek){            
157 |         "Monday"    {$patchTuesdayDate = $date.AddDays(8); break}             
158 |         "Tuesday"   {$patchTuesdayDate = $date.AddDays(7); break}             
159 |         "Wednesday" {$patchTuesdayDate = $date.AddDays(13); break}             
160 |         "Thursday"  {$patchTuesdayDate = $date.AddDays(12); break}             
161 |         "Friday"    {$patchTuesdayDate = $date.AddDays(11); break}             
162 |         "Saturday"  {$patchTuesdayDate = $date.AddDays(10); break}             
163 |         "Sunday"    {$patchTuesdayDate = $date.AddDays(9); break}
164 |      }            
165 |      $patchDate = $patchTuesdayDate.AddDays($adddays)
166 |      return $patchDate           
167 | }            
168 |             
169 | #Function to convert normal datetime object into DMTFDateTime which is needed by ConfigManager ScheduleToken
170 | Function Convert-NormalDateToConfigMgrDate {
171 |     [CmdletBinding()]
172 |     param (
173 |         [parameter(Mandatory=$true, ValueFromPipeline=$true)]
174 |         [string]$convertdate
175 |     )
176 | 
177 |     return [System.Management.ManagementDateTimeconverter]::ToDMTFDateTime($convertdate)
178 | }
179 | 
180 | Function create-ScheduleToken { 
181 | $class_SMS_ST_NonRecurring = [wmiclass]""
182 | $class_SMS_ST_NonRecurring.psbase.Path ="ROOT\SMS\Site_$($SiteCode):SMS_ST_NonRecurring"
183 | 
184 | $scheduleToken = $class_SMS_ST_NonRecurring.CreateInstance()   
185 |     if($scheduleToken) 
186 |         {
187 |         $scheduleToken.DayDuration = 0
188 |         $scheduleToken.HourDuration = $HourDuration
189 |         $scheduleToken.IsGMT = $IsGMT.ToBool()
190 |         $scheduleToken.MinuteDuration = $MinuteDuration
191 |         $scheduleToken.StartTime = (Convert-NormalDateToConfigMgrDate $MWstartTime)
192 | 
193 |         $class_SMS_ScheduleMethods = [wmiclass]""
194 |         $class_SMS_ScheduleMethods.psbase.Path ="ROOT\SMS\Site_$($SiteCode):SMS_ScheduleMethods"
195 |         
196 |         $script:ScheduleString = $class_SMS_ScheduleMethods.WriteToString($scheduleToken)
197 |         [string]$ScheduleString.StringData
198 |         
199 |         } 
200 | }
201 | 
202 | Function New-CMMaintenanceWindow {
203 | [CmdletBinding()]
204 | param
205 | (
206 |     [datetime]$MWstartTime
207 | )
208 | $CollelectionSettings = Get-WmiObject -class SMS_CollectionSettings -Namespace root\sms\site_$($SiteCode) | Where-Object {$_.CollectionID -eq "$($CollectionID)"}
209 | $CollelectionSettings = [wmi]$CollelectionSettings.__PATH
210 | 
211 | if ($CollelectionSettings -eq $null) {
212 | $CollelectionSettings = ([WMIClass] ("root\SMS\site_$($SiteCode):SMS_CollectionSettings")).CreateInstance();
213 | $CollelectionSettings.CollectionID = $CollectionID;
214 | $disposable = $CollelectionSettings.Put();
215 | } 
216 | 
217 | $CollelectionSettings.Get()
218 | 
219 | $class_SMS_ServiceWindow = [wmiclass]""
220 | $class_SMS_ServiceWindow.psbase.Path ="ROOT\SMS\Site_$($SiteCode):SMS_ServiceWindow"
221 | 
222 | $SMS_ServiceWindow = $class_SMS_ServiceWindow.CreateInstance()
223 | 
224 | If ($AddMaintenanceWindowNameMonth)
225 | {
226 |     $monthname = (get-date -Format MMMM ($MWstartTime))
227 |     $yearnumber = ($MWstartTime).Year
228 |     $SMS_ServiceWindow.Name                     = "$($MaintenanceWindowName) $($monthname) $($yearnumber)"
229 | }
230 | else
231 | {
232 |     $SMS_ServiceWindow.Name                     = "$($MaintenanceWindowName)"
233 | }
234 | $SMS_ServiceWindow.Description              = "$($MaintenanceWindowDescription)"
235 | $SMS_ServiceWindow.IsEnabled                = $true
236 | $SMS_ServiceWindow.RecurrenceType           = 1
237 | $SMS_ServiceWindow.ServiceWindowSchedules   = $scheduleString
238 | $SMS_ServiceWindow.ServiceWindowType        = $swtypeint
239 | $SMS_ServiceWindow.StartTime                = "$(Get-Date -Format "yyyyMMddhhmmss.ffffff+***")"
240 | 
241 | $CollelectionSettings.ServiceWindows += $SMS_ServiceWindow.psobject.baseobject
242 | $CollelectionSettings.Put() |Out-Null
243 | 
244 | }
245 | 
246 | function Get-patchTuesdayDate {            
247 |  	if ($nextmonth){            
248 |         $now = Get-Date            
249 |         if ($now.Month -eq 12){
250 |             $dateUTC = Get-Date -Day 1 -Month $($now.addmonths(1)).month -Year $($now.addyears(1)).year
251 |             $date = [datetime]"$($dateUTC)"
252 |             get-secondTuesdayDate $date $adddays
253 |         } 
254 |         else {       
255 |             $dateUTC = Get-Date -Day 1 -Month $($now.Month + 1) -Year $now.Year
256 |             $date = [datetime]"$($dateUTC)"
257 |             get-secondTuesdayDate $date $adddays           
258 |         }
259 |     }            
260 |     else {            
261 |         For ($i = 1; $i -le 12 ; $i++)
262 |         {
263 |             $dateUTC = Get-Date -Day 1 -Month $i -Year $($StartYear) 
264 |             get-secondTuesdayDate $dateUTC $adddays 
265 |         }                
266 |     }            
267 | }
268 | ### Functions End Here ###
269 | 
270 | if($patchTuesday)
271 | {
272 |     [datetime[]]$newdates = Get-patchTuesdayDate
273 |     foreach ($newdate in $newdates)
274 |     {
275 |         [datetime]$MWstartTime = Get-Date -Day $newdate.Day -Month $newdate.Month -Year $newdate.Year -Hour $StartHour -Minute $StartMinute -Second 0 -Millisecond 0
276 |         $schedulestring = create-ScheduleToken $MWstartTime
277 |         try 
278 |             {
279 |                 New-CMMaintenanceWindow $MWstartTime
280 |             }
281 |         catch
282 |             {
283 |                 If ($AddMaintenanceWindowNameMonth)
284 |                 {
285 |                     $monthstring = get-date -Format MMMM ($MWstartTime)
286 |                     Write-Error "There was an error creating the Maintenance Window $($MaintenanceWindowName) $($monthstring) for Collection ID $($CollectionID)."
287 |                 }
288 |                 else
289 |                 {
290 |                     Write-Error "There was an error creating the Maintenance Window $($MaintenanceWindowName) for Collection ID $($CollectionID)."
291 |                 }
292 |             }
293 |     }
294 | }
295 | else
296 | {
297 |     [datetime]$MWstartTime = Get-Date -Day $StartDay -Month $StartMonth -Year $StartYear -Hour $StartHour -Minute $StartMinute -Second 0 -Millisecond 0 
298 | 
299 |     $schedulestring = create-ScheduleToken $MWstartTime
300 | 
301 |     try 
302 |         {
303 |             New-CMMaintenanceWindow $MWstartTime
304 |         }
305 |     catch
306 |         {
307 |             Write-Error "There was an error creating the Maintenance Window $($MaintenanceWindowName) for Collection ID $($CollectionID)."
308 |         }
309 | 
310 | }
311 | 


--------------------------------------------------------------------------------
/Intune/Assign-AutoPilotDevice/Assign-AutoPilotDevice.ps1:
--------------------------------------------------------------------------------
  1 | <#
  2 | .SYNOPSIS
  3 |   Import-IntuneDeviceConfigurationFromJSON
  4 | 
  5 | .DESCRIPTION
  6 |   Imports all device configurations in a folder to a specified tenant
  7 | 
  8 | .PARAMETER Output
  9 |   If set to TRUE the it will create a csv file with autopilot info for manual import in intune.
 10 | 
 11 | .PARAMETER GroupTag
 12 |   If set to TRUE the grouptags will be read from GroupTags.txt and the selected tag will be imported into intune.
 13 |   
 14 | .PARAMETER Tenant
 15 |   Specifies which tentant to use. <sometenant.onmicrosoft.com>
 16 | 
 17 | .PARAMETER RestartOnSucess
 18 |   Automatically restarts the computer once the import have been imported sucessfully.
 19 | 
 20 | .PARAMETER Force
 21 |   Skip confirmation to import into tenant.
 22 | 
 23 | 
 24 | .NOTES
 25 |   Version:        1.0
 26 |   Author:         Mattias Benninge
 27 |   Creation Date:  2020-01-07
 28 |   Purpose/Change: Initial script development
 29 |   Credits to Michael Niehaus for parts that gets and creates the hardware hash for AutoPilot. https://www.powershellgallery.com/packages/Get-WindowsAutoPilotInfo/1.6 created by Michael Niehaus. 
 30 |     - v1.1        MB - Bugfix where you could not select a grouptag if there were more than 10 selections. Added support for multipage grouptag menu.
 31 |     - v1.2        MB - Changed to 'groupTag' from 'orderIdentifier', MS have updated the Graph API and orderIdentifier was deprectated.
 32 | 
 33 | .EXAMPLE
 34 |   Assign-AutoPilotDevice.ps1 
 35 |   
 36 | #>
 37 | #region --------------------------------------------------[Script Parameters]------------------------------------------------------
 38 | [CmdletBinding()]
 39 | Param (
 40 |     [Parameter(Mandatory = $False)] [switch] $Output = $true, 
 41 |     [Parameter(Mandatory = $False)] [switch] $GroupTag = $true, 
 42 |     [Parameter(Mandatory = $False)] [string] $Tenant = "<tenant>.onmicrosoft.com",
 43 |     [Parameter(Mandatory = $False)] [string] $UserDomain = '@<yourdomain.com>', # this will add the specified domain to your username. So instead of typing 'john.doe@contoso.com', it is enough to type 'john.doe'
 44 |     [Parameter(Mandatory = $False)] [switch] $RestartOnSucess = $true,
 45 |     [Parameter(Mandatory = $False)] [switch] $GroupTagFromAzure = $false, # If set to true it will get the grouptags from AzureAD groups instead of using the file.
 46 |     [Parameter(Mandatory = $False)] [string] $GroupTagPrefix = "PP-", # Prefix for the Groups in Azure that will be used to populate grouptags. Description = Friendly Name and the dynamic query is parsed to extract the group tag.
 47 |     [Parameter(Mandatory = $False)] [switch] $Force = $false
 48 | )
 49 | 
 50 | $script:Tenant = $Tenant
 51 | #endregion --------------------------------------------------[Script Parameters]------------------------------------------------------
 52 | #region ---------------------------------------------------[Declarations]----------------------------------------------------------
 53 | 
 54 | #Any Global Declarations go here
 55 | $script:graphApiVersion = "Beta"
 56 | [int]$MenuSteps = 20 # Max numbers of grouptags to show on one page
 57 | 
 58 | try {
 59 |     import-Module ".\AzureAD"
 60 | }
 61 | catch { }
 62 | 
 63 | While ($null -eq (Get-Module -Name "AzureAD")) {
 64 |     $path = Read-Host "Enter path to AzureAD module, eg D:\AzureAD"
 65 |     if (!(Test-Path $path)) {
 66 |         Write-host "$path not found"
 67 |     }
 68 |     else {
 69 |         import-Module $path
 70 |     }
 71 | }
 72 | 
 73 | #endregion ---------------------------------------------------[Declarations]----------------------------------------------------------
 74 | #region ---------------------------------------------------[Functions]------------------------------------------------------------
 75 | 
 76 | function Get-AuthToken {
 77 |     <#
 78 |     .SYNOPSIS
 79 |     This function is used to authenticate with the Graph API REST interface
 80 |     .DESCRIPTION
 81 |     The function authenticate with the Graph API Interface with the tenant name
 82 |     .EXAMPLE
 83 |     Get-AuthToken
 84 |     Authenticates you with the Graph API interface
 85 |     .NOTES
 86 |     NAME: Get-AuthToken
 87 |     #>
 88 |     [cmdletbinding()]
 89 |     param
 90 |     (
 91 |         [Parameter(Mandatory = $true)]
 92 |         $User
 93 |     )
 94 |     
 95 |      #$tenant = $userUpn.Host
 96 |     Write-Host "Checking for AzureAD module..."
 97 |     $AadModule = Get-Module -Name "AzureAD"
 98 |     
 99 |     if ($null -eq $AadModule) {
100 |         Write-Host "AzureAD PowerShell module not found, looking for AzureADPreview"
101 |         $AadModule = Get-Module -Name "AzureADPreview" -ListAvailable
102 |     }
103 |     
104 |     if ($null -eq $AadModule) {
105 |         write-host
106 |         write-host "AzureAD Powershell module not installed..." -f Red
107 |         write-host "Install by running 'Install-Module AzureAD' or 'Install-Module AzureADPreview' from an elevated PowerShell prompt" -f Yellow
108 |         write-host "Script can't continue..." -f Red
109 |         write-host
110 |         exit
111 |     }
112 |     
113 |     # Getting path to ActiveDirectory Assemblies
114 |     # If the module count is greater than 1 find the latest version
115 |     if ($AadModule.count -gt 1) {
116 |         $Latest_Version = ($AadModule | Select-Object version | Sort-Object)[-1]
117 |         $aadModule = $AadModule | Where-Object { $_.version -eq $Latest_Version.version }
118 |         # Checking if there are multiple versions of the same module found
119 |     
120 |         if ($AadModule.count -gt 1) {
121 |             $aadModule = $AadModule | Select-Object -Unique
122 |         }
123 |         $adal = Join-Path $AadModule.ModuleBase "Microsoft.IdentityModel.Clients.ActiveDirectory.dll"
124 |         $adalforms = Join-Path $AadModule.ModuleBase "Microsoft.IdentityModel.Clients.ActiveDirectory.Platform.dll"
125 |     }
126 |     else {
127 |         $adal = Join-Path $AadModule.ModuleBase "Microsoft.IdentityModel.Clients.ActiveDirectory.dll"
128 |         $adalforms = Join-Path $AadModule.ModuleBase "Microsoft.IdentityModel.Clients.ActiveDirectory.Platform.dll"
129 |     }
130 |     [System.Reflection.Assembly]::LoadFrom($adal) | Out-Null
131 |     [System.Reflection.Assembly]::LoadFrom($adalforms) | Out-Null
132 |     $clientId = "d1ddf0e4-d672-4dae-b554-9d5bdfd93547"
133 |     $redirectUri = "urn:ietf:wg:oauth:2.0:oob"
134 |     $resourceAppIdURI = "https://graph.microsoft.com"
135 |     $authority = "https://login.microsoftonline.com/$script:Tenant"
136 |     
137 |     try {
138 |         $authContext = New-Object "Microsoft.IdentityModel.Clients.ActiveDirectory.AuthenticationContext" -ArgumentList $authority
139 |         # https://msdn.microsoft.com/en-us/library/azure/microsoft.identitymodel.clients.activedirectory.promptbehavior.aspx
140 |         # Change the prompt behaviour to force credentials each time: Auto, Always, Never, RefreshSession
141 |         $platformParameters = New-Object "Microsoft.IdentityModel.Clients.ActiveDirectory.PlatformParameters" -ArgumentList "Auto"
142 |         $userId = New-Object "Microsoft.IdentityModel.Clients.ActiveDirectory.UserIdentifier" -ArgumentList ($User, "OptionalDisplayableId")
143 |         $authResult = $authContext.AcquireTokenAsync($resourceAppIdURI, $clientId, $redirectUri, $platformParameters, $userId).Result
144 |         # If the accesstoken is valid then create the authentication header
145 |         if ($authResult.AccessToken) {
146 |             # Creating header for Authorization token
147 |             $authHeader = @{
148 |                 'Content-Type'  = 'application/json'
149 |                 'Authorization' = "Bearer " + $authResult.AccessToken
150 |                 'ExpiresOn'     = $authResult.ExpiresOn
151 |             }
152 |             return $authHeader
153 |         }
154 |         else {
155 |             Write-Host
156 |             Write-Host "Authorization Access Token is null, please re-run authentication..." -ForegroundColor Red
157 |             Write-Host
158 |             break
159 |         }
160 |     }
161 |     catch {
162 |         write-host $_.Exception.Message -f Red
163 |         write-host $_.Exception.ItemName -f Red
164 |         write-host
165 |         break
166 |     }
167 | }
168 | 
169 | Function Get-AutoPilotImportedDevice() {
170 |     <# 
171 |     .SYNOPSIS 
172 |     Gets information about devices being imported into Windows Autopilot. 
173 |      
174 |     .DESCRIPTION 
175 |     The Get-AutoPilotImportedDevice cmdlet retrieves either the full list of devices being imported into Windows Autopilot for the current Azure AD tenant, or information for a specific device if the ID of the device is specified. Once the import is complete, the information instance is expected to be deleted. 
176 |     
177 |     .PARAMETER id 
178 |     Optionally specifies the ID (GUID) for a specific Windows Autopilot device being imported. 
179 |      
180 |     .EXAMPLE 
181 |     Get a list of all devices being imported into Windows Autopilot for the current Azure AD tenant. 
182 |      
183 |     Get-AutoPilotImportedDevice 
184 |     #>
185 |     [cmdletbinding()]
186 |     param
187 |     (
188 |         [Parameter(Mandatory = $false)] $id
189 |     )
190 |     
191 |     # Defining Variables
192 |     $DCP_resource = "deviceManagement/importedWindowsAutopilotDeviceIdentities"
193 |     
194 |     if ($id) {
195 |         $uri = "https://graph.microsoft.com/$($script:graphApiVersion)/$DCP_resource/$id"
196 |     }
197 |     else {
198 |         $uri = "https://graph.microsoft.com/$($script:graphApiVersion)/$DCP_resource"
199 |     }
200 |     try {
201 |         $response = Invoke-RestMethod -Uri $uri -Headers $authToken -Method Get
202 |         if ($id) {
203 |             $response
204 |         }
205 |         else {
206 |             $devices = $response.value
207 |         
208 |             $devicesNextLink = $response."@odata.nextLink"
209 |         
210 |             while ($null -ne $devicesNextLink) {
211 |                 $devicesResponse = (Invoke-RestMethod -Uri $devicesNextLink -Headers $authToken -Method Get)
212 |                 $devicesNextLink = $devicesResponse."@odata.nextLink"
213 |                 $devices += $devicesResponse.value
214 |             }
215 |         
216 |             $devices
217 |         }
218 |     }
219 |     catch {
220 |     
221 |         $ex = $_.Exception
222 |         $errorResponse = $ex.Response.GetResponseStream()
223 |         $reader = New-Object System.IO.StreamReader($errorResponse)
224 |         $reader.BaseStream.Position = 0
225 |         $reader.DiscardBufferedData()
226 |         $responseBody = $reader.ReadToEnd();
227 |     
228 |         Write-Host "Response content:`n$responseBody" -f Red
229 |         Write-Error "Request to $Uri failed with HTTP Status $($ex.Response.StatusCode) $($ex.Response.StatusDescription)"
230 |     
231 |         break
232 |     }
233 |     
234 | }
235 | 
236 | Function Get-AutoPilotDevice() {
237 |     <# 
238 |         .SYNOPSIS 
239 |         Gets devices currently registered with Windows Autopilot. 
240 |          
241 |         .DESCRIPTION 
242 |         The Get-AutoPilotDevice cmdlet retrieves either the full list of devices registered with Windows Autopilot for the current Azure AD tenant, or a specific device if the ID of the device is specified. 
243 |          
244 |         .PARAMETER id 
245 |         Optionally specifies the ID (GUID) for a specific Windows Autopilot device (which is typically returned after importing a new device) 
246 |          
247 |         .EXAMPLE 
248 |         Get a list of all devices registered with Windows Autopilot 
249 |          
250 |         Get-AutoPilotDevice 
251 |         #>
252 |     [cmdletbinding()]
253 |     param
254 |     (
255 |         [Parameter(Mandatory = $false)] $id
256 |     )
257 |             
258 |     # Defining Variables
259 |     $DCP_resource = "deviceManagement/windowsAutopilotDeviceIdentities"
260 |             
261 |     if ($id) {
262 |         $uri = "https://graph.microsoft.com/$($script:graphApiVersion)/$DCP_resource/$id" + '?$expand=deploymentProfile'
263 |     }
264 |     else {
265 |         $uri = "https://graph.microsoft.com/$($script:graphApiVersion)/$DCP_resource"
266 |     }
267 |     try {
268 |         $response = Invoke-RestMethod -Uri $uri -Headers $authToken -Method Get
269 |         if ($id) {
270 |             $response
271 |         }
272 |         else {
273 |             $devices = $response.value
274 |         
275 |             $devicesNextLink = $response."@odata.nextLink"
276 |             
277 |             while ($null -ne $devicesNextLink) {
278 |                 $devicesResponse = (Invoke-RestMethod -Uri $devicesNextLink -Headers $authToken -Method Get)
279 |                 $devicesNextLink = $devicesResponse."@odata.nextLink"
280 |                 $devices += $devicesResponse.value
281 |             }
282 |             
283 |             $devices
284 |         }
285 |     }
286 |     catch {
287 |             
288 |         $ex = $_.Exception
289 |         $errorResponse = $ex.Response.GetResponseStream()
290 |         $reader = New-Object System.IO.StreamReader($errorResponse)
291 |         $reader.BaseStream.Position = 0
292 |         $reader.DiscardBufferedData()
293 |         $responseBody = $reader.ReadToEnd();
294 |             
295 |         Write-Host "Response content:`n$responseBody" -f Red
296 |         Write-Error "Request to $Uri failed with HTTP Status $($ex.Response.StatusCode) $($ex.Response.StatusDescription)"
297 |             
298 |         break
299 |     }
300 |             
301 | }
302 | 
303 | Function Add-AutoPilotDevice() {
304 |     <#
305 | .SYNOPSIS
306 | This function is used to add an device configuration policy using the Graph API REST interface
307 | .DESCRIPTION
308 | The function connects to the Graph API Interface and adds a device configuration policy
309 | .EXAMPLE
310 | Add-DeviceConfigurationPolicy -JSON $JSON
311 | Adds a device configuration policy in Intune
312 | .NOTES
313 | NAME: Add-DeviceConfigurationPolicy
314 | #>
315 |     [cmdletbinding()]
316 |     param
317 |     (
318 |         $JSON
319 |     )
320 |     $DCP_resource = "deviceManagement/importedWindowsAutopilotDeviceIdentities"
321 |     Write-Verbose "Resource: $DCP_resource"
322 |     $response = ""
323 | 
324 |     try {
325 |         if ($JSON -eq "" -or $null -eq $JSON) {
326 |             write-host "No JSON specified, please specify valid JSON for the Device Configuration Policy..." -f Red
327 |         }
328 |         else {
329 |             Test-JSON -JSON $JSON
330 |             $uri = "https://graph.microsoft.com/$script:graphApiVersion/$($DCP_resource)"
331 |             $response = Invoke-RestMethod -Uri $uri -Headers $authToken -Method Post -Body $JSON -ContentType "application/json; charset=utf-8" 
332 |         }
333 |     }
334 |     catch {
335 |         $ex = $_.Exception
336 |         $errorResponse = $ex.Response.GetResponseStream()
337 |         $reader = New-Object System.IO.StreamReader($errorResponse)
338 |         $reader.BaseStream.Position = 0
339 |         $reader.DiscardBufferedData()
340 |         $responseBody = $reader.ReadToEnd();
341 |         Write-Host "Response content:`n$responseBody" -f Red
342 |         Write-Error "Request to $Uri failed with HTTP Status $($ex.Response.StatusCode) $($ex.Response.StatusDescription)"
343 |         write-host
344 |         break
345 |     }
346 |     return $response
347 | }
348 |     
349 | ####################################################
350 |     
351 | Function Test-JSON() {
352 |     <#
353 |     .SYNOPSIS
354 |     This function is used to test if the JSON passed to a REST Post request is valid
355 |     .DESCRIPTION
356 |     The function tests if the JSON passed to the REST Post is valid
357 |     .EXAMPLE
358 |     Test-JSON -JSON $JSON
359 |     Test if the JSON is valid before calling the Graph REST interface
360 |     .NOTES
361 |     NAME: Test-AuthHeader
362 |     #>
363 |     param (
364 |         $JSON
365 |     )
366 |     
367 |     try {
368 |         $TestJSON = ConvertFrom-Json $JSON -ErrorAction Stop
369 |         $validJson = $true
370 |     }
371 |     catch {
372 |         $validJson = $false
373 |         $_.Exception
374 |     }
375 |     
376 |     if (!$validJson) {
377 |         Write-Host "Provided JSON isn't in valid JSON format" -f Red
378 |         break
379 |     }
380 | }
381 | 
382 | function Show-Menu {
383 |     <#
384 |     .SYNOPSIS
385 |     Creates a commandline menu
386 |     .DESCRIPTION
387 |     Creates a commandline menu
388 |     .EXAMPLE
389 |     Show-Menu -Title "My Title"
390 | 
391 |     #>
392 |     param (
393 |         [string]$Title = "",
394 |         [int]$StartValue
395 |     )
396 |     Clear-Host
397 |     Write-Host "================ $Title ================"
398 | 
399 |     if ($grouptagselection.Count -gt $MenuSteps) {
400 |         $maxselection = $StartValue + $MenuSteps
401 |         for ($i = 0 + $StartValue; $i -lt $maxselection; $i++) {
402 |             If ($GroupTagFromAzure) { Write-Host "$i`: $($script:grouptagselection[$i].Key)" }
403 |             else { Write-Host "$i`: $($script:grouptagselection[$i].Keys)" }
404 | 
405 |         }
406 |         if ((($StartValue / $MenuSteps) + 1) -eq 1) {
407 |             Write-host $(($StartValue / $MenuSteps) + 1) "/"  $([Math]::Ceiling($grouptagselection.Count / $MenuSteps)) " Press 'N' for next Page"
408 |         }
409 |         elseif ((($StartValue / $MenuSteps) + 1) -eq $([Math]::Ceiling($grouptagselection.Count / $MenuSteps))) {
410 |             Write-host $(($StartValue / $MenuSteps) + 1) "/"  $([Math]::Ceiling($grouptagselection.Count / $MenuSteps)) " Press 'P' for Previous Page" 
411 |         }
412 |         else {
413 |             Write-host $(($StartValue / $MenuSteps) + 1) "/"  $([Math]::Ceiling($grouptagselection.Count / $MenuSteps)) " Press 'N' for next Page or 'P' for Previous Page" 
414 |         }
415 |     }
416 |     else {
417 |         for ($i = 0; $i -lt $grouptagselection.Count; $i++) {
418 |             If ($GroupTagFromAzure) { Write-Host "$i`: $($script:grouptagselection[$i].Key)" }
419 |             else { Write-Host "$i`: $($script:grouptagselection[$i].Keys)" }
420 |         }
421 |     }
422 |     Write-Host "Q: Press 'Q' to quit."
423 | }
424 | 
425 | #endregion ---------------------------------------------------[Functions]------------------------------------------------------------
426 | 
427 | #-----------------------------------------------------------[Execution]------------------------------------------------------------
428 | If ($script:Tenant -eq "") {
429 |     $script:Tenant = Read-Host -Prompt "Please specify Tenant to connect to."
430 | }
431 | 
432 | Write-Host "Trying to connect to $script:Tenant, do you want to continue? Y or N?" -ForegroundColor Yellow
433 |         
434 | $Confirm = read-host
435 | if ($Confirm -eq "y" -or $Confirm -eq "Y") {
436 |     Write-Host "Connecting to $script:Tenant.."
437 |     Write-Host    
438 | }
439 | else {
440 |     Write-Host "Aborting..." -ForegroundColor Red
441 |     Write-Host
442 |     break
443 | }
444 | 
445 | #region Authentication
446 | # Checking if authToken exists before running authentication
447 | if ($global:authToken) {
448 |     # Setting DateTime to Universal time to work in all timezones
449 |     $DateTime = (Get-Date).ToUniversalTime()
450 |     # If the authToken exists checking when it expires
451 |     $TokenExpires = ($authToken.ExpiresOn.datetime - $DateTime).Minutes
452 |     if ($TokenExpires -le 0) {
453 |         write-host "Authentication Token expired" $TokenExpires "minutes ago" -ForegroundColor Yellow
454 |         write-host
455 |         # Defining User Principal Name if not present
456 |         if ($null -eq $User -or $User -eq "") {
457 |             $User = Read-Host -Prompt "Please specify your user principal name for Azure Authentication"
458 |             If(!($User -match '@')){ $User = $User + $UserDomain}
459 |             Write-Host $User
460 |         }
461 |         $global:authToken = Get-AuthToken -User $User
462 |     }
463 | }
464 | # Authentication doesn't exist, calling Get-AuthToken function
465 | else {
466 |     if ($null -eq $User -or $User -eq "") {
467 |         $User = Read-Host -Prompt "Please specify your user principal name for Azure Authentication"
468 |         If(!($User -match '@')){ $User = $User + $UserDomain}
469 |         Write-Host $User
470 |     }
471 |     # Getting the authorization token
472 |     $global:authToken = Get-AuthToken -User $User
473 | }
474 | #endregion Authentication
475 | 
476 | If ($GroupTag) {
477 |     If ($GroupTagFromAzure)
478 |     { 
479 |         $uri = 'https://graph.microsoft.com/Beta/groups' + '?$filter=startswith(displayName,''' + $GroupTagPrefix + ''')'
480 |         $groups = (Invoke-RestMethod -Uri $uri -Headers $authToken -Method Get).Value
481 |         $script:grouptagselection = [ordered]@{}
482 |         $grouptagsarray = @{}
483 |         $pattern = '\[OrderID\]:(.*?)"'
484 |         Foreach($group in $groups)
485 |         {
486 |             $grouptagsarray[$($group.description)] = [regex]::match($group.membershipRule, $pattern).Groups[1].Value
487 |         }
488 |         $script:grouptagselection = $grouptagsarray.GetEnumerator() | Sort-Object -Property key
489 |         
490 |     }
491 |     else {
492 |         $script:grouptagselection = [ordered]@{}
493 |         $grouptagsarray = (Get-Content .\GroupTags.txt) | Sort-Object
494 |         $grouptagsarray = $grouptagsarray.Where( { $_ -ne "" })
495 |         $script:grouptagselection = $grouptagsarray | ConvertFrom-StringData
496 |     }
497 | 
498 |     [int]$StartValue = [int]0
499 |     do {
500 |         Show-Menu -Title GroupTag -StartValue $StartValue
501 | 
502 |         #Remove $selection if it has previous been casted as an Int
503 |         Remove-Variable -Name selection -Force -ErrorAction SilentlyContinue
504 | 
505 |         $selection = Read-Host "Please make a selection"
506 |        
507 |         # Make sure that $selection is an [int] if a number has been selected.
508 |         if($selection -match "[0-9]"){ [int]$selection = $selection}
509 |     
510 |         If ($selection -ge 0 -and $selection -lt $grouptagselection.Count) {
511 | 		   
512 |             If($GroupTagFromAzure){ $script:GroupTagSelected = (($grouptagselection[[int]($selection)]).Value | Out-String).Trim() }
513 |             else{ $script:GroupTagSelected = (($grouptagselection[[int]($selection)]).Values | Out-String).Trim() }
514 |         }
515 |         Elseif (($selection -eq "n" -and (($StartValue + $MenuSteps) -le ($grouptagselection.Count)))) {
516 |             $StartValue = $StartValue + $MenuSteps
517 |             if ($StartValue -ge $grouptagselection.Count) { $StartValue = $grouptagselection.Count }
518 |             Write-host "Next." -ForegroundColor Red
519 |         }
520 |         Elseif (($selection -eq "p" -and (($StartValue - $MenuSteps) -ge 0))) {
521 |             $StartValue = $StartValue - $MenuSteps
522 |             if ($StartValue -le 0) { $StartValue = 0 }
523 |             Write-host "Next." -ForegroundColor Red
524 |         }
525 |         Elseif ($selection -eq "q") {
526 |             Write-host "Quiting script." -ForegroundColor Red
527 |             pause
528 |             exit
529 |         }
530 |         Else {
531 |             Write-host "Not a valid selection, try again." -ForegroundColor Red
532 |             pause
533 |         }
534 |        
535 |     }
536 |     until ($selection -eq 'q' -or ($selection -ge 0 -and $selection -lt $script:grouptagselection.Count))
537 | }
538 | else {
539 |     $script:GroupTagSelected = ""
540 | }
541 | 
542 | #region AutoPilot
543 | # This part is from https://www.powershellgallery.com/packages/Get-WindowsAutoPilotInfo/1.6 created by Michael Niehaus. 
544 | 
545 | $computers = @()
546 | $session = New-CimSession
547 | 
548 | # Get the common properties.
549 | Write-Verbose "Checking $comp"
550 | $serial = (Get-CimInstance -CimSession $session -Class Win32_BIOS).SerialNumber
551 | 
552 | # Get the hash (if available)
553 | $devDetail = (Get-CimInstance -CimSession $session -Namespace root/cimv2/mdm/dmmap -Class MDM_DevDetail_Ext01 -Filter "InstanceID='Ext' AND ParentID='./DevDetail'")
554 | if ($devDetail -and (-not $Force)) {
555 |     $hash = $devDetail.DeviceHardwareData
556 | }
557 | else {
558 |     $bad = $true
559 |     $hash = ""
560 | }
561 | 
562 | # If the hash isn't available, get the make and model
563 | if ($bad -or $Force) {
564 |     $cs = Get-CimInstance -CimSession $session -Class Win32_ComputerSystem
565 |     $make = $cs.Manufacturer.Trim()
566 |     $model = $cs.Model.Trim()
567 |     if ($Partner) {
568 |         $bad = $false
569 |     }
570 | }
571 | else {
572 |     $make = ""
573 |     $model = ""
574 | }
575 | 
576 | # Getting the PKID is generally problematic for anyone other than OEMs, so let's skip it here
577 | $product = ""
578 | 
579 | # Create a pipeline object
580 | $c = New-Object psobject -Property @{
581 |     "Device Serial Number" = $serial
582 |     "Windows Product ID"   = $product
583 |     "Hardware Hash"        = $hash
584 |     "Group Tag"            = $script:GroupTagSelected
585 | }
586 | 
587 | # Write the object to the pipeline or array
588 | if ($bad) {
589 |     # Report an error when the hash isn't available
590 |     Write-Error -Message "Unable to retrieve device hardware data (hash) from computer $comp" -Category DeviceError
591 |     exit
592 | }
593 | else {
594 |     $computers += $c
595 | }
596 | 
597 | Remove-CimSession $session
598 | 
599 | if ($Output) {
600 |     $filename = $computers[0]."Device Serial Number"
601 |     $computers | Select-Object "Device Serial Number", "Windows Product ID", "Hardware Hash", "Group Tag" | ConvertTo-CSV -NoTypeInformation | ForEach-Object { $_ -replace '"', '' } | Out-File "AP-$($filename).csv"
602 | }
603 | 
604 | $AutopilotDevice = [ordered]@{
605 |     '@odata.type'               = '#microsoft.graph.importedWindowsAutopilotDeviceIdentity'
606 |     'groupTag'           = if ($($computers[0]."Group Tag")) { "$($computers[0]."Group Tag".ToString())" } else { "" }
607 |     'serialNumber'              = $computers[0]."Device Serial Number"
608 |     'productKey'                = $computers[0]."Windows Product ID" 
609 |     'hardwareIdentifier'        = $computers[0]."Hardware Hash"
610 |     'assignedUserPrincipalName' = "" #if ($UserPrincipalName) { "$($UserPrincipalName)" } else { "" }
611 |     'state'                     = @{
612 |         '@odata.type'          = 'microsoft.graph.importedWindowsAutopilotDeviceIdentityState'
613 |         'deviceImportStatus'   = 'pending'
614 |         'deviceRegistrationId' = ''
615 |         'deviceErrorCode'      = 0
616 |         'deviceErrorName'      = ''
617 |     }
618 | }
619 | 
620 | $AutopilotDeviceJSON = $AutopilotDevice | ConvertTo-Json
621 | #endregion AutoPilot
622 | 
623 | Write-Host "Grouptag '$($script:GroupTagSelected)' is selected for Device : $serial"
624 | Write-host "Importing device and waiting until import is complete"
625 | $newdevice = Add-AutoPilotDevice($AutopilotDeviceJSON)
626 | 
627 | Write-Progress -Activity "Waiting for Device import.. " -Completed
628 | $i = 1
629 | Do {
630 |     If ($i -lt 100) {
631 |         write-progress -Activity "Waiting for Device import.. " -PercentComplete $i
632 |     }
633 |     else {
634 |         $i = 1
635 |     }
636 |     $i++
637 |     start-sleep -seconds 5
638 |     if ((Get-AutoPilotImportedDevice($($newdevice.ID))).state.deviceImportStatus -eq "failed") {
639 |         Write-Error "Import failed!"
640 |         exit
641 |     }
642 | }
643 | Until((Get-AutoPilotImportedDevice($($newdevice.ID))).state.deviceImportStatus -eq "complete")
644 | Write-Progress -Activity "Waiting for Device import.. " -Completed
645 | 
646 | $intunedeviceID = (Get-AutoPilotImportedDevice($($newdevice.ID))).state.deviceRegistrationId
647 | 
648 | Write-Host "Device $($computers[0]."Device Serial Number") imported with ID=$intunedeviceID"
649 | Write-Host "Waiting 20 seconds for device to be available"
650 | Start-Sleep -Seconds 20
651 | Write-host "Waiting for device to be assigned , can take a long time so grab a coffee.. (max wait 15 min)"
652 | 
653 | $starttime = Get-date
654 | $waitvalues = "unknown", "pending", "notAssigned", "", $null
655 | write-host "Time is now $starttime"
656 | 
657 | $i = 1
658 | while ((New-TimeSpan -Start $starttime -End (get-date)).Minutes -lt 15) {
659 | 
660 |     $device = Get-AutoPilotDevice($intunedeviceID)
661 |     if (!($device.deploymentProfileAssignmentStatus -in $waitvalues)) {
662 |         break
663 |     }
664 | 
665 |     If ($i -lt 100) {
666 |         write-progress -Activity "Waiting for Device assignment ($($device.deploymentProfileAssignmentStatus)).. $((New-TimeSpan -Start $starttime -End (get-date)).Minutes) Minutes have passed.." -PercentComplete $i
667 |     }
668 |     else {
669 |         $i = 1
670 |     }
671 |     $i++
672 |     start-sleep -seconds 10
673 | }
674 | Write-Progress -Activity "Waiting for Device assignment" -Completed
675 | 
676 | if ((New-TimeSpan -Start $starttime -End (get-date)).Minutes -ge 15) {
677 |     Write-host "This took longer than expected, , check the Intune console for more information" -ForegroundColor Red
678 |     exit 1
679 | }
680 | 
681 | $device = Get-AutoPilotDevice($intunedeviceID)
682 | Write-Host "$($device.deploymentProfileAssignmentStatus) : $($device.deploymentProfileAssignedDateTime)"
683 | 
684 | If ((Get-AutoPilotDevice($intunedeviceID)).deploymentProfileAssignmentStatus -eq "unknown" -or (Get-AutoPilotDevice($intunedeviceID)).deploymentProfileAssignmentStatus -eq "failed") {
685 |     Write-Warning "Something went wrong, check the Intune console for more information"
686 | }
687 | else {
688 |     write-host "Waiting 60 seconds to trigger a manual Windows Autopilot enrollment sync"
689 |     start-sleep -Seconds 60
690 |     $uri = 'https://graph.microsoft.com/Beta/deviceManagement/windowsAutopilotSettings/sync'
691 |     Invoke-RestMethod -Uri $uri -Headers $authToken -Method POST | Out-Null
692 |     write-host "Complete! Device imported and assigned to $($computers[0]."Group Tag".ToString()), serial number:"
693 |     write-host $computers[0]."Device Serial Number"
694 |     write-host "Deleting Autopilot registrykeys and folders"
695 |     try{
696 |         if(Test-Path -Path "C:\Windows\Provisioning\AutoPilot"){Remove-Item "C:\Windows\Provisioning\AutoPilot" -Recurse -Force}
697 |         if(Test-Path -Path "C:\Windows\ServiceState\AutoPilot"){Remove-Item "C:\Windows\ServiceState\AutoPilot" -Recurse -Force}
698 |         if(Test-Path -Path "HKLM:\Software\Microsoft\Provisioning\AutopilotPolicy"){Remove-Item "HKLM:\Software\Microsoft\Provisioning\AutopilotPolicy" -Recurse -Force}
699 |         if(Test-Path -Path "HKLM:\Software\Microsoft\Provisioning\Diagnostics\Autopilot"){Remove-Item "HKLM:\Software\Microsoft\Provisioning\Diagnostics\Autopilot" -Recurse -Force}
700 |         Write-host "All Autopilot folders and registry keys was deleted sucessfully."
701 |     }
702 |     catch{
703 |         Write-Warning "Warning: Could not delete all folders or registrykeys!!"
704 |     }
705 |     write-host "This Computer will reboot in 5 minutes, press Ctrl+C to abort!" -ForegroundColor Green
706 |     Start-Sleep -Seconds 300
707 |     If ($RestartOnSucess) { Restart-Computer -Force }
708 | }


--------------------------------------------------------------------------------