SAPIEN Solutions

SAPIEN homepage
PrimalScript script editor+ide
PrimalScope script debugger
Free Tools script utilities
SAPIEN Press tech books
ScriptingAnswers.com learn+share
ScriptingOutpost.com online store
Blog.Sapien.com official blog
Contact Us

 

« Targeting a list of names
Automating Internet Explorer »

Alternate Credentials - ADSI and WMI

 Here’s an example of using alternate credentials to connect to either WMI or ADSI. Note that WMI doesn’t allow alternate credentials if you’re connecting to the LOCAL computer - only for remote connections. Both of these examples use a function. GetPassword, which I’ve included. This prompts you for a password on the command-line (it’ll give you an error if run with WScript) and hides what you’re typing.

  1. '
  2. ' ScriptingAnswers.com Essentials - by Don Jones
  3. '
  4. ' Alternate Credentials
  5. ' This shows how to make a connection, using alternate
  6. ' credentials, using both WMI or ADSI. It also shows
  7. ' a very useful function that will gather a password,
  8. ' since it's a horrible idea to hardcode a password
  9. ' into any script
  10. '

  12. ' You're not intended to RUN this script - it just makes
  13. ' the connections; it doesn't do anything with them.
  14. ' Copy and paste appropriate code into your own script


  17. 'here's the WMI connection using alternate credentials
  18. Dim objLocator, objWMI
  19. Set objLocator = CreateObject("WbemScripting.SWbemLocator")
  20. On Error Resume Next
  21. Set objWMI = objLocator.ConnectServer("Server1","root\cimv2","Administrator",GetPassword("Administrator"))
  22. If Err <> 0 Then
  23. WScript.Echo "Error: " & Err.Description
  24. Else
  25. 'you're connected - use objWMI.ExecQuery to execute a query
  26. End If


  29. 'here's the ADSI connection using alternate credentials
  30. 'you'll obviously modify the LDAP query to match whatever
  31. 'AD object you're trying to get hold of. Notice that the
  32. 'alternate credential is an LDAP path!
  33. Const ADS_SECURE_AUTHENTICATION = 1
  34. Dim objRoot, objDomain
  35. Set objRoot = GetObject("LDAP:")
  36. On Error Resume Next
  37. Set objDomain = objRoot.OpenDSObject("LDAP://dc=company,dc=com", "cn=AdminDon,ou=Admins,dc=company,dc=com", _
  38. GetPassword("AdminDon@company.com"), ADS_SECURE_AUTHENTICATION)
  39. If Err <> 0 Then
  40. WScript.Echo "Error: " & Err.Description
  41. Else
  42. 'you're connected - objDomain, in this example, represents the domain
  43. End If


  46. ' Here's the password-collection Function
  47. ' It does assume we're (a) running on WinXP or 2003,
  48. ' and (b) running from CScript, not WScript
  49. ' Run CSCRIPT //H:cscript to make CScript your Default
  50. ' script host.
  51. Function GetPassword(strUsername)
  52. Dim objScriptPW, strPassword
  53. Set objScriptPW = CreateObject("ScriptPW.Password")
  54. WScript.Echo "Input password for " & strUsername & " and press Enter:"
  55. strPassword = objScriptPW.GetPassword
  56. GetPassword = strPassword
  57. End Function
[Slashdot] [Digg] [Reddit] [del.icio.us] [Facebook] [Technorati] [Google] [StumbleUpon]

Tags: , , , , ,

This entry was posted on Friday, February 15th, 2008 at 1:18 pm and is filed under Scripts and Templates, VBScript Scripts. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply


Entries (RSS) and Comments (RSS).