VpasModule

13.1.1

public/New-VPASIdentityGenerateUserPassword.ps1

                                <#

.Synopsis

   GENERATE A PASSWORD FOR USER IN IDENTITY

   CREATED BY: Vadim Melamed, EMAIL: vmelamed5@gmail.com

.DESCRIPTION

   USE THIS FUNCTION TO GENERATE A PASSWORD FOR USER IN IDENTITY

.PARAMETER NoSSL

   If the environment is not set up for SSL, API calls will be made via HTTP not HTTPS (Not Recommended!)

.PARAMETER token

   HashTable of data containing various pieces of login information (PVWA, LoginToken, HeaderType, etc).

   If -token is not passed, function will use last known hashtable generated by New-VPASToken

.PARAMETER passwordLength

   Specify how many characters the generated password should be

.PARAMETER CopyToClipboard

   The generated password will be copied to the clipboard

.EXAMPLE

   $GeneratedPassword = New-VPASIdentityGenerateUserPassword -passwordLength {PASSWORDLENGTH VALUE} -CopyToClipboard

.OUTPUTS

   Generated Password if successful

   $false if failed

#>

function New-VPASIdentityGenerateUserPassword{

    [OutputType([String],[bool])]

    [CmdletBinding()]

    Param(

        [Parameter(Mandatory=$true,ValueFromPipelineByPropertyName=$true,HelpMessage="Enter password length requirement (for example: 16)",Position=0)]

        [String]$passwordLength,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=1)]

        [Switch]$CopyToClipboard,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=2)]

        [hashtable]$token,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=3)]

        [Switch]$NoSSL

    )

    Begin{

        $tokenval,$sessionval,$PVWA,$Header,$ISPSS,$IdentityURL = Get-VPASSession -token $token

    }

    Process{

        Write-Verbose "SUCCESSFULLY PARSED PVWA VALUE"

        Write-Verbose "SUCCESSFULLY PARSED TOKEN VALUE"

        try{

            if(!$IdentityURL){

                Write-VPASOutput -str "LOGIN TOKEN WAS NOT GENERATED THROUGH IDENTITY, TERMINATING API CALL" -type E

                return $false

            }

            $params = @{

                passwordLength = $passwordLength

            } | ConvertTo-Json

            if($NoSSL){

                Write-Verbose "NO SSL ENABLED, USING HTTP INSTEAD OF HTTPS"

                $uri = "http://$IdentityURL/Core/GeneratePassword"

            }

            else{

                Write-Verbose "SSL ENABLED BY DEFAULT, USING HTTPS"

                $uri = "https://$IdentityURL/Core/GeneratePassword"

            }

            if($sessionval){

                $response = Invoke-RestMethod -Headers @{"Authorization"=$Header} -Uri $uri -Method POST -Body $params -ContentType "application/json" -WebSession $sessionval

            }

            else{

                $response = Invoke-RestMethod -Headers @{"Authorization"=$Header} -Uri $uri -Method POST -Body $params -ContentType "application/json"

            }

            Write-Verbose "PARSING DATA FROM CYBERARK"

            $returnpass = $response.Result

            if($CopyToClipboard){

                $returnpass | Set-Clipboard

            }

            return $returnpass

        }catch{

            Write-Verbose "FAILED TO QUERY ADMIN SECURITY QUESTIONS"

            Write-VPASOutput -str $_ -type E

            return $false

        }

    }

    End{

    }

}