archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/admin/wmi/wbem/scripting/test/whistler/directory/secdisc.vbs

103 lines
2.7 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. on error resume next
  3. set l = CreateObject("WbemScripting.SWbemLocatorEx")
  4. set c = CreateObject("WbemScripting.SWbemNamedValueSet")
  6. set ldap = l.Open ("umi://nw01t1/ldap", "nw01t1domnb\administrator", "nw01t1domnb")
  8. Set objArgs = Wscript.Arguments
  11. if objArgs.Count > 0 then
  12. if objArgs(0) = "?" OR objArgs(0) = "/?" OR objArgs(0) = "h" OR objArgs(0) = "/h" _
  13. OR objArgs(0) = "-?" OR objArgs(0) = "-h" then
  14. WScript.Echo "Usage: cscript sd.vbs [[o][g][d][s]]"
  15. WScript.Quit
  16. end if
  17. if InStr( 1, objArgs(0), "o", 1) > 0 then c.Add "INCLUDE_OWNER", true
  18. if InStr( 1, objArgs(0), "g", 1) > 0 then c.Add "INCLUDE_GROUP", true
  19. if InStr( 1, objArgs(0), "d", 1) > 0 then c.Add "INCLUDE_DACL", true
  20. if InStr( 1, objArgs(0), "s", 1) > 0 then c.Add "INCLUDE_SACL", true
  21. else
  22. c.Add "INCLUDE_GROUP", true
  23. c.Add "INCLUDE_OWNER", true
  24. c.Add "INCLUDE_DACL", true
  25. c.Add "INCLUDE_SACL", true
  26. end if
  28. set cont = ldap.Get (".CN=users", &H40000, c)
  30. set sd = cont.GetSecurityDescriptor_
  32. if err then WScript.Echo "[" & Err.Description & "]"
  34. WScript.Echo
  35. WScript.Echo "SD"
  36. WScript.Echo "=="
  37. WScript.Echo
  39. WScript.Echo "Revision:", sd.Revision
  40. WScript.Echo "Control:", sd.Control
  41. WScript.Echo "Owner:", sd.Owner
  42. WScript.Echo "OwnerDefaulted:", sd.OwnerDefaulted
  43. WScript.Echo "Group:", sd.Group
  44. WScript.Echo "GroupDefaulted:", sd.GroupDefaulted
  45. WScript.Echo "DaclDefaulted:", sd.DaclDefaulted
  46. WScript.Echo "SaclDefaulted:", sd.SaclDefaulted
  48. set dacl = sd.DiscretionaryAcl
  50. WScript.Echo
  51. WScript.Echo "DACL"
  52. WScript.Echo "===="
  53. WScript.Echo
  55. DisplayACL dacl
  57. set sacl = sd.SystemAcl
  59. WScript.Echo
  60. WScript.Echo "SACL"
  61. WScript.Echo "===="
  62. WScript.Echo
  64. DisplayACL sacl
  66. Sub DisplayAcl (acl)
  67. on error resume next
  69. ' NOTE: The following test should really be IsObject, but
  70. ' for some reason using [ogd] we don't get a nothing back from the
  71. ' IADsSecurityDescriptor.SystemAcl and DiscretionaryAcl calls, we get what
  72. ' looks like VT_NULL.
  73. '
  74. ' We can change this to use IsNull instead to fix that test, but then
  75. ' the [o] test fails here with "Object Required". It seems that sometimes
  76. ' the omission of the ACL from the SD is marked with a VT_NULL and sometimes
  77. ' is literally marked as "Nothing".
  78. if IsObject(acl) then
  79. if Not acl is Nothing then
  81. if err <> 0 then
  82. WScript.Echo "No ACL Present"
  83. else
  84. Wscript.Echo "AceCount:", acl.AceCount
  85. WScript.Echo "AclRevision:", acl.AclRevision
  87. for each ace in acl
  88. DisplayAce ace
  89. next
  90. end if
  91. else
  92. WScript.Echo "No ACL Present"
  93. end if
  94. else
  95. WScript.Echo "No ACL Present"
  96. end if
  97. End Sub
  99. Sub DisplayAce (ace)
  100. on error resume next
  101. WScript.Echo " " & Hex(ace.AccessMask) & " " & ace.AceType & " " & ace.Trustee
  102. End Sub