Hi,
.Net and therefore the powershell has the ability to define a secure string. This means that the string is immediately deleted from memory if it is no longer needed.
Continue reading Powershell: Convert a string into a securestring and back to plaintext
Hi,
a short post. It describes how to create a new local Windows User account and add them to an existing local user group.
First of all, include the following references in your project:
1 2 | using System.DirectoryServices;using System.Runtime.InteropServices; |
Create a new User with local administrator rights.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 | // define Username and Passwordconst string USER_NAME = "NewAdmin";char[] aPWchars = { 'P', 'a', 's', 's' , 'w', 'o', 'r', 'd'};System.Security.SecureString oPW = new System.Security.SecureString();foreach (char cChr in aPWchars) { oPW.AppendChar(cChr);}// Get Computerobject via ADSIDirectoryEntry oComputer = new DirectoryEntry("WinNT://" + Environment.MachineName + ",computer");// New UserDirectoryEntry oNewUser = oComputer.Children.Add(USER_NAME, "user");// define Pointer to a stringIntPtr pString = IntPtr.Zero;// Pointer to passwordpString = Marshal.SecureStringToGlobalAllocUnicode(oPW);// Set passwordoNewUser.Invoke("SetPassword", new object[] { Marshal.PtrToStringUni(pString) });// Add a descriptionoNewUser.Invoke("Put", new object[] { "Description", "New Administrator" });// Save changesoNewUser.CommitChanges();// Cleanup and free Password pointerMarshal.ZeroFreeGlobalAllocUnicode(pString);// Get GroupDirectoryEntry oGroup = oComputer.Children.Find("Administrators", "group");// And add the recently created useroGroup.Invoke("Add", new object[] { oNewUser.Path.ToString() }); |
Michael