icinga-powershell-framework/lib/core/icingaagent/setters/Set-IcingaAgentServiceUser.psm1

function Set-IcingaServiceUser()
{
    param (
        [string]$User           = 'NT Authority\NetworkService',
        [securestring]$Password,
        [string]$Service        = 'icinga2',
        [switch]$SetPermission  = $FALSE
    );

    if ([string]::IsNullOrEmpty($User)) {
        Write-IcingaConsoleError -Message 'Please specify a username to modify the service user';
        return $FALSE;
    }

    switch ($Service.ToLower()) {
        'icinga2' {
            if ($Global:Icinga.Protected.Environment.'Icinga Service'.Present -eq $FALSE) {
                Write-IcingaConsoleDebug -Message 'Trying to update user for service "icinga2" while the service is not installed yet';
                return $FALSE;
            }
            break;
        };
        'icingapowershell' {
            if ($Global:Icinga.Protected.Environment.'PowerShell Service'.Present -eq $FALSE) {
                Write-IcingaConsoleDebug -Message 'Trying to update user for service "icingapowershell" while the service is not installed yet';
                return $FALSE;
            }
            break;
        };
        default {
            if ($null -eq (Get-Service $Service -ErrorAction SilentlyContinue)) {
                return $FALSE;
            }
        };
    }

    if ($User.Contains('@')) {
        $UserData = $User.Split('@');
        $User     = [string]::Format('{0}\{1}', $UserData[1], $UserData[0]);
    } elseif ($User.Contains('\') -eq $FALSE) {
        $User = [string]::Format('.\{0}', $User);
    }

    $ArgString = 'config {0} obj= "{1}" password= "{2}"';
    if ($null -eq $Password) {
        $ArgString = 'config {0} obj= "{1}"{2}';
    }

    $Output = Start-IcingaProcess `
        -Executable 'sc.exe' `
        -Arguments ([string]::Format($ArgString, $Service, $User, (ConvertFrom-IcingaSecureString $Password))) `
        -FlushNewLines $TRUE;

    if ($Output.ExitCode -eq 0) {

        switch ($Service.ToLower()) {
            'icinga2' {
                $Global:Icinga.Protected.Environment.'Icinga Service'.User = $User;
                break;
            };
            'icingapowershell' {
                $Global:Icinga.Protected.Environment.'PowerShell Service'.User = $User;
                break;
            };
        }

        if ($SetPermission) {
            Set-IcingaAgentServicePermission | Out-Null;
            Set-IcingaUserPermissions -IcingaUser $User;
        }

        Write-IcingaConsoleNotice 'Service User "{0}" for service "{1}" successfully updated' -Objects $User, $Service;
        return $TRUE;
    } else {
        Write-IcingaConsoleError ([string]::Format('Failed to update the service user: {0}', $Output.Message));
        return $FALSE;
    }
}

Set-Alias -Name 'Set-IcingaAgentServiceUser' -Value 'Set-IcingaServiceUser';
Adds support for JEA profiles 2021-08-06 12:12:27 -04:00			`function Set-IcingaServiceUser()`
Added Icinga Service and Service permission management 2019-10-17 16:51:12 -04:00			`{`
Adds repository management 2021-07-16 15:38:08 -04:00			`param (`
Adds new command to test the functionality of Icinga for Windows 2024-03-14 12:16:09 -04:00			`[string]$User = 'NT Authority\NetworkService',`
Add support to specify a service for changing the user for 2019-10-31 08:41:42 -04:00			`[securestring]$Password,`
Add easier handling to set user permissions 2019-11-03 12:01:54 -05:00			`[string]$Service = 'icinga2',`
Adds new command to test the functionality of Icinga for Windows 2024-03-14 12:16:09 -04:00			`[switch]$SetPermission = $FALSE`
Added Icinga Service and Service permission management 2019-10-17 16:51:12 -04:00			`);`

			`if ([string]::IsNullOrEmpty($User)) {`
Fixes unhanded true output during installation 2022-01-28 02:56:29 -05:00			`Write-IcingaConsoleError -Message 'Please specify a username to modify the service user';`
Added Icinga Service and Service permission management 2019-10-17 16:51:12 -04:00			`return $FALSE;`
			`}`

Adds new command to test the functionality of Icinga for Windows 2024-03-14 12:16:09 -04:00			`switch ($Service.ToLower()) {`
			`'icinga2' {`
			`if ($Global:Icinga.Protected.Environment.'Icinga Service'.Present -eq $FALSE) {`
			`Write-IcingaConsoleDebug -Message 'Trying to update user for service "icinga2" while the service is not installed yet';`
			`return $FALSE;`
			`}`
			`break;`
			`};`
			`'icingapowershell' {`
			`if ($Global:Icinga.Protected.Environment.'PowerShell Service'.Present -eq $FALSE) {`
			`Write-IcingaConsoleDebug -Message 'Trying to update user for service "icingapowershell" while the service is not installed yet';`
			`return $FALSE;`
			`}`
			`break;`
			`};`
			`default {`
			`if ($null -eq (Get-Service $Service -ErrorAction SilentlyContinue)) {`
			`return $FALSE;`
			`}`
			`};`
Adds support for JEA profiles 2021-08-06 12:12:27 -04:00			`}`

Adds support to provide user and domain with @ separated 2023-05-26 08:17:26 -04:00			`if ($User.Contains('@')) {`
			`$UserData = $User.Split('@');`
			`$User = [string]::Format('{0}\{1}', $UserData[1], $UserData[0]);`
			`} elseif ($User.Contains('\') -eq $FALSE) {`
Fixes service user to point to local machine if not defined 2019-10-28 12:07:48 -04:00			`$User = [string]::Format('.\{0}', $User);`
			`}`

Fixed: ServiceUser can't be changed on Server 2008 Added a space to fix sc.exe not changing user on Windows Server 2008 because it expects a space between 'password=' and '"{2}"' 2020-03-04 09:18:13 -05:00			`$ArgString = 'config {0} obj= "{1}" password= "{2}"';`
Fixes various code stylings, whitespaces, line handling, and so on 2020-08-04 08:48:32 -04:00			`if ($null -eq $Password) {`
Add support to specify a service for changing the user for 2019-10-31 08:41:42 -04:00			`$ArgString = 'config {0} obj= "{1}"{2}';`
Added Icinga Service and Service permission management 2019-10-17 16:51:12 -04:00			`}`

			$Output = Start-IcingaProcess `
			-Executable 'sc.exe' `
Add support to specify a service for changing the user for 2019-10-31 08:41:42 -04:00			-Arguments ([string]::Format($ArgString, $Service, $User, (ConvertFrom-IcingaSecureString $Password))) `
Added Icinga Service and Service permission management 2019-10-17 16:51:12 -04:00			`-FlushNewLines $TRUE;`

			`if ($Output.ExitCode -eq 0) {`
Add easier handling to set user permissions 2019-11-03 12:01:54 -05:00
Adds new command to test the functionality of Icinga for Windows 2024-03-14 12:16:09 -04:00			`switch ($Service.ToLower()) {`
			`'icinga2' {`
			`$Global:Icinga.Protected.Environment.'Icinga Service'.User = $User;`
			`break;`
			`};`
			`'icingapowershell' {`
			`$Global:Icinga.Protected.Environment.'PowerShell Service'.User = $User;`
			`break;`
			`};`
			`}`

Add easier handling to set user permissions 2019-11-03 12:01:54 -05:00			`if ($SetPermission) {`
Adds support for JEA profiles 2021-08-06 12:12:27 -04:00			`Set-IcingaAgentServicePermission \| Out-Null;`
Adds new command to test the functionality of Icinga for Windows 2024-03-14 12:16:09 -04:00			`Set-IcingaUserPermissions -IcingaUser $User;`
Add easier handling to set user permissions 2019-11-03 12:01:54 -05:00			`}`

Adds support for JEA profiles 2021-08-06 12:12:27 -04:00			`Write-IcingaConsoleNotice 'Service User "{0}" for service "{1}" successfully updated' -Objects $User, $Service;`
Added Icinga Service and Service permission management 2019-10-17 16:51:12 -04:00			`return $TRUE;`
			`} else {`
Replaces Write-Host calls with custom console writes 2020-05-13 10:53:15 -04:00			`Write-IcingaConsoleError ([string]::Format('Failed to update the service user: {0}', $Output.Message));`
Added Icinga Service and Service permission management 2019-10-17 16:51:12 -04:00			`return $FALSE;`
			`}`
			`}`
Adds support for JEA profiles 2021-08-06 12:12:27 -04:00
			`Set-Alias -Name 'Set-IcingaAgentServiceUser' -Value 'Set-IcingaServiceUser';`