Tests/Integration/MSFT_ADComputer.config.ps1
|
#region HEADER # Integration Test Config Template Version: 1.2.0 #endregion $configFile = [System.IO.Path]::ChangeExtension($MyInvocation.MyCommand.Path, 'json') if (Test-Path -Path $configFile) { <# Allows reading the configuration data from a JSON file, for real testing scenarios outside of the CI. #> $ConfigurationData = Get-Content -Path $configFile | ConvertFrom-Json } else { $domainDistinguishedName = (Get-ADDomain).DistinguishedName $currentDomainController = Get-ADDomainController $domainName = $currentDomainController.Domain $ConfigurationData = @{ AllNodes = @( @{ NodeName = 'localhost' CertificateFile = $env:DscPublicCertificatePath DomainDistinguishedName = $domainDistinguishedName ComputerName1 = 'DSCINTEGTEST01' ComputerName2 = 'DSCINTEGTEST02' ComputerName3 = 'DSCINTEGTEST03' RequestFileName = 'C:\DscComputer3.txt' OrganizationalUnitName = 'Global' Location = 'New location' DnsHostName = 'DSCINTEGTEST01@{0}' -f $domainName ServicePrincipalNames = @('spn/a', 'spn/b') UserPrincipalName = 'DSCINTEGTEST01@{0}' -f $domainName DisplayName = 'DSCINTEGTEST01' Description = 'New description' } ) } } <# .SYNOPSIS Creates a computer account using the default values. .NOTES This computer account should be created enabled, as it will use the default value for the property Enable of the cmdlet New-ADComputer. #> Configuration MSFT_ADComputer_CreateComputerAccount1_Config { Import-DscResource -ModuleName 'ActiveDirectoryDsc' node $AllNodes.NodeName { ADComputer 'Integration_Test' { ComputerName = $Node.ComputerName1 <# This property is used to verify that the restore works in one of the next test. #> Location = 'Old location' } } } <# .SYNOPSIS Removes a computer account using the default values. .NOTES This removed computer account will later be used to restore the computer account from the recycle bin. #> Configuration MSFT_ADComputer_RemoveComputerAccount1_Config { Import-DscResource -ModuleName 'ActiveDirectoryDsc' node $AllNodes.NodeName { ADComputer 'Integration_Test' { Ensure = 'Absent' ComputerName = $Node.ComputerName1 } } } <# .SYNOPSIS Restores a computer account from recycle bin. .NOTES This test verifies that restored computer account location property is set to the previous value. If the restore does not work a computer account will be created using the default values and the test vill fail since the location will not be correct. For this to work the Recycle Bin must be enabled prior to running this test. #> Configuration MSFT_ADComputer_RestoreComputerAccount1_Config { Import-DscResource -ModuleName 'ActiveDirectoryDsc' node $AllNodes.NodeName { ADComputer 'Integration_Test' { Ensure = 'Present' ComputerName = $Node.ComputerName1 RestoreFromRecycleBin = $true } } } <# .SYNOPSIS Updates all available properties on a computer account. #> Configuration MSFT_ADComputer_UpdateComputerAccount1_Config { Import-DscResource -ModuleName 'ActiveDirectoryDsc' node $AllNodes.NodeName { ADOrganizationalUnit 'Global' { Ensure = 'Present' Name = $Node.OrganizationalUnitName Path = $Node.DomainDistinguishedName ProtectedFromAccidentalDeletion = $false } ADComputer 'Integration_Test' { Ensure = 'Present' ComputerName = $Node.ComputerName1 Location = $Node.Location DnsHostName = $Node.DnsHostName ServicePrincipalNames = $Node.ServicePrincipalNames UserPrincipalName = $Node.UserPrincipalName DisplayName = $Node.DisplayName Path = 'OU={0},{1}' -f $Node.OrganizationalUnitName, $Node.DomainDistinguishedName Description = $Node.Description DependsOn = '[ADOrganizationalUnit]Global' } } } <# .SYNOPSIS Creates a computer account disabled. #> Configuration MSFT_ADComputer_CreateComputerAccount2Disabled_Config { Import-DscResource -ModuleName 'ActiveDirectoryDsc' node $AllNodes.NodeName { ADComputer 'Integration_Test' { ComputerName = $Node.ComputerName2 EnabledOnCreation = $false } } } <# .SYNOPSIS Creates a computer account using the default values. .NOTES This computer account should be created enabled, as it will use the default value for the property Enable of the cmdlet New-ADComputer. #> Configuration MSFT_ADComputer_CreateComputerAccount3WithOfflineDomainJoin_Config { Import-DscResource -ModuleName 'ActiveDirectoryDsc' node $AllNodes.NodeName { ADComputer 'Integration_Test' { ComputerName = $Node.ComputerName3 RequestFile = $Node.RequestFileName } } } <# .SYNOPSIS Clean up all the computer accounts. #> Configuration MSFT_ADComputer_CleanUp_Config { Import-DscResource -ModuleName 'ActiveDirectoryDsc' Import-DscResource -ModuleName 'PSDesiredStateConfiguration' node $AllNodes.NodeName { ADComputer 'RemoveComputerAccount1' { Ensure = 'Absent' ComputerName = $Node.ComputerName1 } ADComputer 'RemoveComputerAccount2' { Ensure = 'Absent' ComputerName = $Node.ComputerName2 } ADComputer 'RemoveComputerAccount3' { Ensure = 'Absent' ComputerName = $Node.ComputerName3 } ADOrganizationalUnit 'RemoveGlobal' { Ensure = 'Absent' Name = $Node.OrganizationalUnitName Path = $Node.DomainDistinguishedName } File 'RemoveRequestFile' { Ensure = 'Absent' DestinationPath = $Node.RequestFileName } } } |