- Changes to xActiveDirectory
- Added a Requirements section to every DSC resource README with the bullet point stating "Target machine must be running Windows Server 2008 R2 or later" (issue #399).
- Added a line to the xADManagedServiceAccount DSC resource README reading "Group Managed Service Accounts need at least one Windows Server 2012 Domain Controller" (issue #399).
- Changes to xActiveDirectory
- Added new helper functions in xADCommon, see each functions comment-based
help for more information.
- Convert-PropertyMapToObjectProperties
- Compare-ResourcePropertyState
- Test-DscPropertyState
- Move the examples in the README.md to Examples folder.
- Fix Script Analyzer rule failures.
- Opt-in to the following DSC Resource Common Meta Tests:
- Common Tests - Custom Script Analyzer Rules
- Common Tests - Required Script Analyzer Rules
- Common Tests - Flagged Script Analyzer Rules
- Common Tests - Validate Module Files (issue #282)
- Common Tests - Validate Script Files (issue #283)
- Common Tests - Relative Path Length (issue #284)
- Common Tests - Validate Markdown Links (issue #280)
- Common Tests - Validate Localization (issue #281)
- Common Tests - Validate Example Files (issue #279)
- Common Tests - Validate Example Files To Be Published (issue #311)
- Move resource descriptions to Wiki using auto-documentation (issue #289)
- Move helper functions from MSFT_xADCommon to the module
xActiveDirectory.Common (issue #288).
- Removed helper function
Test-ADDomain
since it was not used. The helper function had design flaws too. - Now the helper function
Test-Members
outputs all the members that are not in desired state when verbose output is enabled.
- Removed helper function
- Update all unit tests to latest unit test template.
- Deleted the obsolete xActiveDirectory_TechNetDocumentation.html file.
- Added new resource xADObjectEnabledState. This resource should be
used to enforce the
Enabled
property of computer accounts. This resource replaces the deprecatedEnabled
property in the resource xADComputer. - Cleanup of code
- Removed semicolon throughout where it is not needed.
- Migrate tests to Pester syntax v4.x (issue #322).
- Removed
-MockWith {}
in unit tests. - Use fully qualified type names for parameters and variables (issue #374).
- Removed unused legacy test files from the root of the repository.
- Updated Example List README with missing resources.
- Added missing examples for xADReplicationSubnet, xADServicePrincipalName and xWaitForADDomain. (issue #395).
- Added new helper functions in xADCommon, see each functions comment-based
help for more information.
- Changes to xADComputer
- Refactored the resource and the unit tests.
- BREAKING CHANGE: The
Enabled
property is DEPRECATED and is no longer set or enforces with this resource. If this parameter is used in a configuration a warning message will be outputted saying that theEnabled
parameter has been deprecated. The new resource xADObjectEnabledState can be used to enforce theEnabled
property. - BREAKING CHANGE: The default value of the enabled property of the
computer account will be set to the default value of the cmdlet
New-ADComputer
. - A new parameter was added called
EnabledOnCreation
that will control if the computer account is created enabled or disabled. - Moved examples from the README.md to separate example files in the Examples folder.
- Fix the RestoreFromRecycleBin description.
- Fix unnecessary cast in
Test-TargetResource
(issue #295). - Fix ServicePrincipalNames property empty string exception (issue #382).
- Changes to xADGroup
- Change the description of the property RestoreFromRecycleBin.
- Code cleanup.
- Changes to xADObjectPermissionEntry
- Change the description of the property IdentityReference.
- Fix failure when applied in the same configuration as xADDomain.
- Localize and Improve verbose messaging.
- Code cleanup.
- Changes to xADOrganizationalUnit
- Change the description of the property RestoreFromRecycleBin.
- Code cleanup.
- Fix incorrect verbose message when this resource has Ensure set to Absent (issue #276).
- Changes to xADUser
- Change the description of the property RestoreFromRecycleBin.
- Added ServicePrincipalNames property (issue #153).
- Added ChangePasswordAtLogon property (issue #246).
- Code cleanup.
- Added LogonWorkstations property
- Added Organization property
- Added OtherName property
- Added AccountNotDelegated property
- Added AllowReversiblePasswordEncryption property
- Added CompoundIdentitySupported property
- Added PasswordNotRequired property
- Added SmartcardLogonRequired property
- Added ProxyAddresses property (Issue #254).
- Fix Password property being updated whenever another property is changed (issue #384).
- Replace Write-Error with the correct helper function (Issue #331).
- Changes to xADDomainController
- Change the
#Requires
statement in the Examples to require the correct module. - Suppressing the Script Analyzer rule
PSAvoidGlobalVars
since the resource is using the$global:DSCMachineStatus
variable to trigger a reboot. - Code cleanup.
- Change the
- Changes to xADDomain
- Suppressing the Script Analyzer rule
PSAvoidGlobalVars
since the resource is using the$global:DSCMachineStatus
variable to trigger a reboot. - Code cleanup.
- Suppressing the Script Analyzer rule
- Changes to xADDomainTrust
- Replaced New-TerminatingError with Standard Function.
- Code cleanup.
- Changes to xWaitForADDomain
- Suppressing the Script Analyzer rule
PSAvoidGlobalVars
since the resource is using the$global:DSCMachineStatus
variable to trigger a reboot. - Added missing property schema descriptions (issue #369).
- Code cleanup.
- Suppressing the Script Analyzer rule
- Changes to xADRecycleBin
- Remove unneeded example and resource designer files.
- Added missing property schema descriptions (issue #368).
- Code cleanup.
- It now sets back the
$ErrorActionPreference
that was set prior to setting it to'Stop'
. - Replace Write-Error with the correct helper function (issue #327).
- Changes to xADReplicationSiteLink
- Fix ADIdentityNotFoundException when creating a new site link.
- Code cleanup.
- Changes to xADReplicationSubnet
- Remove
{ *Present* | Absent }
from the property schema descriptions which were causing corruption in the Wiki documentation.
- Remove
- Changes to xADServicePrincipalNames
- Remove
{ *Present* | Absent }
from the property schema descriptions which were causing corruption in the Wiki documentation.
- Remove
- Changes to xADDomainDefaultPasswordPolicy
- Code cleanup.
- Changes to xADForestProperties
- Minor style cleanup.
- Changes to xADReplicationSubnet
- Code cleanup.
- Changes to xADKDSKey
- Code cleanup.
- Changes to xADManagedServiceAccount
- Code cleanup.
- Changes to xADServicePrincipalName
- Code cleanup.
- Changes to xActiveDirectory
- Added localization module -DscResource.LocalizationHelper* containing
the helper functions
Get-LocalizedData
,New-InvalidArgumentException
,New-InvalidOperationException
,New-ObjectNotFoundException
, andNew-InvalidResultException
(issue #257). For more information around these helper functions and localization in resources, see Localization section in the Style Guideline. - Added common module DscResource.Common containing the helper function
Test-DscParameterState
. The goal is that all resource common functions are moved to this module (functions that are or can be used by more than one resource) (issue #257). - Added xADManagedServiceAccount resource to manage Managed Service Accounts (MSAs). Andrew Wickham (@awickham10) and @kungfu71186
- Removing the Misc Folder, as it is no longer required.
- Added xADKDSKey resource to create KDS Root Keys for gMSAs. @kungfu71186
- Combined DscResource.LocalizationHelper and DscResource.Common Modules into xActiveDirectory.Common
- Added localization module -DscResource.LocalizationHelper* containing
the helper functions
- Changes to xADReplicationSiteLink
- Make use of the new localization helper functions.
- Changes to xAdDomainController
- Added new parameter to disable or enable the Global Catalog (GC) (issue #75). Eric Foskett @Merto410
- Fixed a bug with the parameter
InstallationMediaPath
that it would not be added if it was specified in a configuration. Now the parameterInstallationMediaPath
is correctly passed toInstall-ADDSDomainController
. - Refactored the resource with major code cleanup and localization.
- Updated unit tests to latest unit test template and refactored the tests for the function 'Set-TargetResource'.
- Improved test code coverage.
- Changes to xADComputer
- Restoring a computer account from the recycle bin no longer fails if
there is more than one object with the same name in the recycle bin.
Now it uses the object that was changed last using the property
whenChanged
(issue #271).
- Restoring a computer account from the recycle bin no longer fails if
there is more than one object with the same name in the recycle bin.
Now it uses the object that was changed last using the property
- Changes to xADGroup
- Restoring a group from the recycle bin no longer fails if there is
more than one object with the same name in the recycle bin. Now it
uses the object that was changed last using the property
whenChanged
(issue #271).
- Restoring a group from the recycle bin no longer fails if there is
more than one object with the same name in the recycle bin. Now it
uses the object that was changed last using the property
- Changes to xADOrganizationalUnit
- Restoring an organizational unit from the recycle bin no longer fails
if there is more than one object with the same name in the recycle bin.
Now it uses the object that was changed last using the property
whenChanged
(issue #271).
- Restoring an organizational unit from the recycle bin no longer fails
if there is more than one object with the same name in the recycle bin.
Now it uses the object that was changed last using the property
- Changes to xADUser
- Restoring a user from the recycle bin no longer fails if there is
more than one object with the same name in the recycle bin. Now it
uses the object that was changed last using the property
whenChanged
(issue #271).
- Restoring a user from the recycle bin no longer fails if there is
more than one object with the same name in the recycle bin. Now it
uses the object that was changed last using the property
- Added xADReplicationSiteLink
- New resource added to facilitate replication between AD sites
- Updated xADObjectPermissionEntry to use
AD:
which is more generic when usingGet-Acl
andSet-Acl
than usingMicrosoft.ActiveDirectory.Management\ActiveDirectory:://RootDSE/
- Changes to xADComputer
- Minor clean up of unit tests.
- Changes to xADUser
- Added TrustedForDelegation parameter to xADUser to support enabling/disabling Kerberos delegation
- Minor clean up of unit tests.
- Added Ensure Read property to xADDomainController to fix Get-TargetResource return bug (issue #155).
- Updated readme and add release notes
- Updated xADGroup to support group membership from multiple domains (issue #152). Robert Biddle (@robbiddle) and Jan-Hendrik Peters (@nyanhp)
- Added parameter to xADDomainController to support InstallationMediaPath (issue #108).
- Updated xADDomainController schema to be standard and provide Descriptions.
- Explicitly removed extra hidden files from release package
- Add PasswordNeverResets parameter to xADUser to facilitate user lifecycle management
- Update appveyor.yml to use the default template.
- Added default template files .gitattributes, and .gitignore, and .vscode folder.
- Added xADForestProperties: New resource to manage User and Principal Name Suffixes for a Forest.
- Added xADObjectPermissionEntry
- New resource added to control the AD object permissions entries Claudio Spizzi (@claudiospizzi)
- Changes to xADCommon
- Assert-Module has been extended with a parameter ImportModule to also import the module (issue #218). Jan-Hendrik Peters (@nyanhp)
- Changes to xADDomain
- xADDomain makes use of new parameter ImportModule of Assert-Module in order to import the ADDSDeployment module (issue #218). Jan-Hendrik Peters (@nyanhp)
- xADComputer, xADGroup, xADOrganizationalUnit and xADUser now support restoring from AD recycle bin (Issue #221). Jan-Hendrik Peters (@nyanhp)
- Changes to xActiveDirectory
- Changed MSFT_xADUser.schema.mof version to "1.0.0.0" to match other resources (issue #190). thequietman44 (@thequietman44)
- Removed duplicated code from examples in README.md (issue #198). thequietman44 (@thequietman44)
- xADDomain is now capable of setting the forest and domain functional level (issue #187). Jan-Hendrik Peters (@nyanhp)
- Changes to xActiveDirectory
- Activated the GitHub App Stale on the GitHub repository.
- The resources are now in alphabetical order in the README.md (issue #194).
- Adding a Branches section to the README.md with Codecov badges for both master and dev branch (issue #192).
- xADGroup no longer resets GroupScope and Category to default values (issue #183).
- The helper function script file MSFT_xADCommon.ps1 was renamed to MSFT_xADCommon.psm1 to be a module script file instead. This makes it possible to report code coverage for the helper functions (issue #201).
- xADReplicationSite: Resource added.
- Added xADReplicationSubnet resource.
- Fixed bug with group members in xADGroup
- Converted AppVeyor.yml to use DSCResource.tests shared code.
- Opted-In to markdown rule validation.
- Readme.md modified resolve markdown rule violations.
- Added CodeCov.io support.
- Added xADServicePrincipalName resource.
- xAdDomainController: Update to complete fix for SiteName being required field.
- xADDomain: Added retry logic to prevent FaultException to crash in Get-TargetResource on subsequent reboots after a domain is created because the service is not yet running. This error is mostly occur when the resource is used with the DSCExtension on Azure.
- xAdDomainController: Fixes SiteName being required field.
- xADDomainController: Adds Site option.
- xADDomainController: Populate values for DatabasePath, LogPath and SysvolPath during Get-TargetResource.
- Converted AppVeyor.yml to pull Pester from PSGallery instead of Chocolatey
- xADUser: Adds 'PasswordAuthentication' option when testing user passwords to support NTLM authentication with Active Directory Certificate Services deployments
- xADUser: Adds descriptions to user properties within the schema file.
- xADGroup: Fixes bug when updating groups when alternate Credentials are specified.
- xADDomainController: Customer identified two cases of incorrect variables being called in Verbose output messages. Corrected.
- xADComputer: New resource added.
- xADComputer: Added RequestFile support.
- Fixed PSScriptAnalyzer Errors with v1.6.0.
- xWaitForADDomain: Made explicit credentials optional and other various updates
- xADDomainDefaultPasswordPolicy: New resource added.
- xWaitForADDomain: Updated to make it compatible with systems that don't have the ActiveDirectory module installed, and to allow it to function with domains/forests that don't have a domain controller with Active Directory Web Services running.
- xADGroup: Fixed bug where specified credentials were not used to retrieve existing group membership.
- xADDomain: Added check for Active Directory cmdlets.
- xADDomain: Added additional error trapping, verbose and diagnostic information.
- xADDomain: Added unit test coverage.
- Fixes CredentialAttribute and other PSScriptAnalyzer tests in xADCommon, xADDomin, xADGroup, xADOrganizationalUnit and xADUser resources.
- xADOrganizationalUnit: Merges xADOrganizationalUnit resource from the PowerShell gallery
- xADGroup: Added Members, MembersToInclude, MembersToExclude and MembershipAttribute properties.
- xADGroup: Added ManagedBy property.
- xADGroup: Added Notes property.
- xADUser: Adds additional property settings.
- xADUser: Adds unit test coverage.
- Added new resource: xADGroup
- Fixed issue with NewDomainNetbiosName parameter.
- Added DNS flush in retry loop
- Bug fixes in xADDomain resource
- Removed xDscResourceDesigner tests (moved to common tests)
- Updated xADDomainTrust and xADRecycleBin tests
- Added xADRecycleBin resource
- Minor fixes for xADUser resource
- Added xADRecycleBin.
- Modified xADUser to include a write-verbose after user is removed when Absent.
- Corrected xADUser to successfully create a disabled user without a password.
- Modified xAdDomain and xAdDomainController to support Ensure as Present / Absent, rather than True/False. Note: this may cause issues for existing scripts.
- Corrected return value to be a hashtable in both resources.
- Minor update: Get-TargetResource to use domain name instead of name.
- Updated release, which added the resource:
- xADDomainTrust
- Initial release with the following resources:
- xADDomain, xADDomainController, xADUser, and xWaitForDomain