Configurations/PowerShellLab/VMValidate.test.ps1
|
#requires -version 5.1 #test if VM setup is complete $LabData = Import-PowerShellDataFile -Path $PSScriptRoot\VMConfigurationData.psd1 $Secure = ConvertTo-SecureString -String "$($labdata.allnodes.labpassword)" -AsPlainText -Force $Domain = $labdata.allnodes.domainname $cred = New-Object PSCredential "$Domain\Administrator", $Secure $wgcred = New-Object PSCredential "administrator", $secure #The prefix only changes the name of the VM not the guest computername $prefix = $Labdata.NonNodeData.Lability.EnvironmentPrefix #set error action preference to suppress all error messsages which would be normal while configurations are converging #turn off progress bars $prep = { $ProgressPreference = "SilentlyContinue" $errorActionPreference = 'SilentlyContinue' } #define an array to hold all of the PSSessions $all = @() Describe DOM1 { $VMName = "$($prefix)DOM1" Try { $dc = New-PSSession -VMName $VMName -Credential $cred -ErrorAction Stop $all += $dc Invoke-Command $prep -Session $dc It "[DOM1] Should belong to the $domain domain" { $test = Invoke-Command { Get-CimInstance -ClassName win32_computersystem -Property domain } -Session $DC $test.domain | Should Be $domain } #test for features $feat = Invoke-Command { Get-WindowsFeature | Where-Object installed } -Session $dc $needed = 'AD-Domain-Services', 'DNS', 'RSAT-AD-Tools', 'RSAT-AD-PowerShell' foreach ($item in $needed) { It "[DOM1] Should have feature $item installed" { $feat.Name -contains $item | Should Be "True" } } It "[DOM1] Should have an IP address of 192.168.3.10" { $i = Invoke-Command -ScriptBlock { Get-NetIPAddress -InterfaceAlias 'Ethernet' -AddressFamily IPv4 } -Session $dc $i.ipv4Address | Should be '192.168.3.10' } It "[DOM1] Should have a domain name of $domain" { $r = Invoke-Command { Try { Get-ADDomain -ErrorAction Stop } Catch { #ignore the error - Domain still spinning up } } -Session $dc $r.dnsroot | Should Be $domain } $OUs = Invoke-Command { Try { Get-ADOrganizationalUnit -Filter * -ErrorAction Stop } Catch { #ignore the error - Domain still spinning up } } -Session $dc if ($OUS) { $needed = 'IT', 'Dev', 'Marketing', 'Sales', 'Accounting', 'JEA_Operators', 'Servers' foreach ($item in $needed) { It "[DOM1] Should have organizational unit $item" { $OUs.name -contains $item | Should Be "True" } } } #if ous $groups = Invoke-Command { Try { Get-ADGroup -Filter * -ErrorAction Stop } Catch { #ignore the error - Domain still spinning up } } -Session $DC if ($groups) { $target = "IT", "Sales", "Marketing", "Accounting", "JEA Operators" foreach ($item in $target) { It "[DOM1] Should have a group called $item" { $groups.Name -contains $item | Should Be "True" } } } #if groups $users = Invoke-Command { Try { Get-ADUser -Filter * -ErrorAction Stop } Catch { #ignore the error - Domain still spinning up } } -Session $dc if ($users) { It "[DOM1] Should have at least 15 user accounts" { $users.count | Should BeGreaterThan 15 } $admins = Invoke-Command { Get-ADGroupMember "Domain Admins"-ErrorAction SilentlyContinue } -Session $dc It "[DOM1] ArtD is a member of Domain Admins" { $admins.name -contains 'artd' | Should Be True } It "[DOM1] AprilS is a member of Domain Admins" { $admins.name -contains 'aprils' | Should Be True } } #if users $computer = Invoke-Command { Try { Get-ADComputer -Filter * -ErrorAction SilentlyContinue } Catch { #ignore the error - Domain still spinning up } } -Session $dc if ($Computer) { It "[DOM1] Should have a computer account for WIN10" { $computer.name -contains "Win10" | Should Be "True" } It "[DOM1] Should have a computer account for SRV1" { $computer.name -contains "SRV1" | Should Be "True" } It "[DOM1] Should have a computer account for SRV2" { $computer.name -contains "SRV2" | Should Be "True" } } #if computer $rec = Invoke-Command { Resolve-DnsName Srv3.company.pri } -Session $DC It "[DOM1] Should have a DNS record for SRV3.COMPANY.PRI" { $rec.name | Should be 'srv3.company.pri' $rec.ipaddress | Should be '192.168.3.60' } It "[DOM1] Should be running Windows Server 2016" { $test = Invoke-Command { Get-CimInstance -ClassName win32_operatingsystem -Property caption } -Session $dc $test.caption | Should BeLike '*2016*' } <# It "[DOM1] Should pass Test-DSCConfiguration" { Invoke-Command { Test-DscConfiguration -WarningAction SilentlyContinue } -Session $dc | Should Be "True" } #> } Catch { It "[DOM1] Should allow a PSSession but got error: $($_.exception.message)" { $false | Should Be $True } } } #DOM1 Describe SRV1 { $VMName = "$($prefix)SRV1" Try { $srv1 = New-PSSession -VMName $VMName -Credential $cred -ErrorAction Stop $all += $srv1 Invoke-Command $prep -Session $srv1 It "[SRV1] Should belong to the $domain domain" { $test = Invoke-Command { Get-CimInstance -ClassName win32_computersystem -Property domain } -Session $SRV1 $test.domain | Should Be $domain } It "[SRV1] Should have an IP address of 192.168.3.50" { $i = Invoke-Command -ScriptBlock { Get-NetIPAddress -InterfaceAlias 'Ethernet' -AddressFamily IPv4 } -Session $SRV1 $i.ipv4Address | Should be '192.168.3.50' } $dns = Invoke-Command { Get-DnsClientServerAddress -InterfaceAlias ethernet -AddressFamily IPv4 } -Session $SRV1 It "[SRV1] Should have a DNS server configuration of 192.168.3.10" { $dns.ServerAddresses -contains '192.168.3.10' | Should Be "True" } It "[SRV1] Should be running Windows Server 2016" { $test = Invoke-Command { Get-CimInstance -ClassName win32_operatingsystem -Property caption } -Session $srv1 $test.caption | Should BeLike '*2016*' } <# It "[SRV1] Should pass Test-DSCConfiguration" { Invoke-Command { Test-DscConfiguration -WarningAction SilentlyContinue } -Session $srv1 | Should Be "True" } #> } Catch { It "[SRV1] Should allow a PSSession but got error: $($_.exception.message)" { $false | Should Be $True } } } #SRV1 Describe SRV2 { $VMName = "$($prefix)SRV2" Try { $SRV2 = New-PSSession -VMName $VMName -Credential $cred -ErrorAction Stop $all += $srv2 Invoke-Command $prep -Session $srv2 It "[SRV2] Should belong to the $domain domain" { $test = Invoke-Command { Get-CimInstance -ClassName win32_computersystem -Property domain } -Session $SRV2 $test.domain | Should Be $domain } It "[SRV2] Should have an IP address of 192.168.3.51" { $i = Invoke-Command -ScriptBlock { Get-NetIPAddress -InterfaceAlias 'Ethernet' -AddressFamily IPv4 } -Session $SRV2 $i.ipv4Address | Should be '192.168.3.51' } $dns = Invoke-Command { Get-DnsClientServerAddress -InterfaceAlias ethernet -AddressFamily IPv4 } -Session $SRV2 It "[SRV2] Should have a DNS server configuration of 192.168.3.10" { $dns.ServerAddresses -contains '192.168.3.10' | Should Be "True" } It "[SRV2] Should have the Web-Server feature installed" { $feature = Invoke-Command { Get-WindowsFeature -Name web-server } -Session $SRV2 $feature.Installed | Should be $True } It "[SRV2] Should have a sample web service file" { $file = Invoke-Command { Get-Item C:\MyWebServices\firstservice.asmx } -Session $SRV2 $file.name | Should be 'firstservice.asmx' } It "[SRV2] Should have a WebApplication called MyWebServices" { $app = Invoke-Command { Try { Get-WebApplication -Name MyWebServices -ErrorAction stop } Catch {} } -Session $SRV2 $app.path | Should be "/MyWebServices" $app.physicalpath | Should be "c:\MyWebServices" } It "[SRV2] Should be running Windows Server 2016" { $test = Invoke-Command { Get-CimInstance -ClassName win32_operatingsystem -Property caption } -Session $srv2 $test.caption | Should BeLike '*2016*' } <# It "[SRV2] Should pass Test-DSCConfiguration" { Invoke-Command { Test-DscConfiguration -WarningAction SilentlyContinue } -Session $srv2 | Should Be "True" } #> } Catch { It "[SRV2] Should allow a PSSession but got error: $($_.exception.message)" { $false | Should Be $True } } } #SRV2 Describe SRV3 { $VMName = "$($prefix)SRV3" Try { $srv3 = New-PSSession -VMName $VMName -Credential $wgCred -ErrorAction Stop $all += $srv3 Invoke-Command $prep -Session $srv3 It "[SRV3] Should respond to WSMan requests" { $srv3.Computername | Should Be $VMName } It "[SRV3] Should have an IP address of 192.168.3.60" { $r = Invoke-Command { Get-NetIPAddress -InterfaceAlias Ethernet -AddressFamily IPv4 } -Session $srv3 $r.IPv4Address | Should Be '192.168.3.60' } It "[SRV3] Should belong to a Workgroup" { $sys = Invoke-Command { Get-CimInstance Win32_computersystem } -Session $srv3 $sys.Domain | Should Be "Workgroup" } It "[SRV3] Should be running Windows Server 2019" { $test = Invoke-Command { Get-CimInstance -ClassName win32_operatingsystem -Property caption } -Session $srv3 $test.caption | Should BeLike '*2019*' } <# It "[SRV3] Should pass Test-DSCConfiguration" { Invoke-Command { Test-DscConfiguration -WarningAction SilentlyContinue } -Session $srv3 | Should Be "True" } #> } Catch { It "[SRV3] Should allow a PSSession but got error: $($_.exception.message)" { $false | Should Be $True } } } Describe Win10 { $VMName = "$($prefix)Win10" $rsat = @( 'Rsat.ActiveDirectory.DS-LDS.Tools~~~~0.0.1.0', 'Rsat.BitLocker.Recovery.Tools~~~~0.0.1.0', 'Rsat.CertificateServices.Tools~~~~0.0.1.0', 'Rsat.DHCP.Tools~~~~0.0.1.0', 'Rsat.Dns.Tools~~~~0.0.1.0', 'Rsat.FailoverCluster.Management.Tools~~~~0.0.1.0', 'Rsat.FileServices.Tools~~~~0.0.1.0', 'Rsat.GroupPolicy.Management.Tools~~~~0.0.1.0', 'Rsat.IPAM.Client.Tools~~~~0.0.1.0', 'Rsat.ServerManager.Tools~~~~0.0.1.0' ) Try { $cl = New-PSSession -VMName $VMName -Credential $cred -ErrorAction Stop $all += $cl Invoke-Command $prep -Session $cl It "[WIN10] Should belong to the $Domain domain" { $test = Invoke-Command { Get-CimInstance -ClassName win32_computersystem -Property domain } -Session $cl $test.domain | Should Be $Domain } It "[WIN10] Should be running Windows 10 Enterprise" { $test = Invoke-Command { Get-CimInstance -ClassName win32_operatingsystem -Property version, caption } -Session $cl $test.caption | Should BeLike "*Enterprise*" } It "[Win10] Should have an IP address of 192.168.3.100" { $i = Invoke-Command -ScriptBlock { Get-NetIPAddress -InterfaceAlias 'Ethernet' -AddressFamily IPv4 } -Session $cl $i.ipv4Address | Should be '192.168.3.100' } $dns = Invoke-Command { Get-DnsClientServerAddress -InterfaceAlias ethernet -AddressFamily IPv4 } -Session $cl It "[Win10] Should have a DNS server configuration of 192.168.3.10" { $dns.ServerAddresses -contains '192.168.3.10' | Should Be "True" } $pkg = Invoke-Command { $using:rsat | foreach-object {Get-WindowsCapability -Online -Name $_}} -Session $cl $rsatstatus = "{0}/{1}" -f ($pkg.where({$_.state -eq "installed"}).Name).count,$rsat.count It "[Win10] Should have RSAT installed [$rsatStatus]" { # write-host ($pkg | Select-object Name,Displayname,State | format-list | Out-String) -ForegroundColor cyan $pkg | Where-Object { $_.state -ne "installed" } | Should be $Null } <# It "[Win10] Should pass Test-DSCConfiguration" { Invoke-Command { Test-DscConfiguration -WarningAction SilentlyContinue } -Session $cl | Should Be "True" } #> } Catch { It "[Win10] Should allow a PSSession but got error: $($_.exception.message)" { $false | Should Be $True } } } #client $all | Remove-PSSession |