DSCResources/DSC_KeyExchangeAlgorithm/DSC_KeyExchangeAlgorithm.psm1
|
$script:sChannelDscHelperModulePath = Join-Path -Path $PSScriptRoot -ChildPath '..\..\Modules\SChannelDsc.Common' $script:resourceHelperModulePath = Join-Path -Path $PSScriptRoot -ChildPath '..\..\Modules\DscResource.Common' Import-Module -Name $script:sChannelDscHelperModulePath Import-Module -Name $script:resourceHelperModulePath $script:localizedData = Get-LocalizedData -DefaultUICulture 'en-US' function Get-TargetResource { [CmdletBinding()] [OutputType([System.Collections.Hashtable])] param ( [Parameter(Mandatory = $true)] [ValidateSet('Diffie-Hellman', 'ECDH', 'PKCS')] [System.String] $KeyExchangeAlgorithm, [Parameter()] [ValidateSet('Enabled', 'Disabled', 'Default')] [System.String] $State = 'Default', [Parameter()] [System.Boolean] $RebootWhenRequired = $false ) Write-Verbose -Message ($script:localizedData.GettingConfiguration -f $KeyExchangeAlgorithm) $rootKey = 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\KeyExchangeAlgorithms' $key = $rootKey + '\' + $KeyExchangeAlgorithm $result = Get-SChannelItem -ItemKey $key $returnValue = @{ KeyExchangeAlgorithm = $KeyExchangeAlgorithm State = $result } $returnValue } function Set-TargetResource { [CmdletBinding()] param ( [Parameter(Mandatory = $true)] [ValidateSet('Diffie-Hellman', 'ECDH', 'PKCS')] [System.String] $KeyExchangeAlgorithm, [Parameter()] [ValidateSet('Enabled', 'Disabled', 'Default')] [System.String] $State = 'Default', [Parameter()] [System.Boolean] $RebootWhenRequired = $false ) Write-Verbose -Message ($script:localizedData.SettingConfiguration -f $KeyExchangeAlgorithm) $rootKey = 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\KeyExchangeAlgorithms' switch ($State) { 'Default' { Write-Verbose -Message ($script:localizedData.ItemDefault -f $KeyExchangeAlgorithm) } 'Disabled' { Write-Verbose -Message ($script:localizedData.ItemDisable -f $KeyExchangeAlgorithm) } 'Enabled' { Write-Verbose -Message ($script:localizedData.ItemEnable -f $KeyExchangeAlgorithm) } } Set-SChannelItem -ItemKey $rootKey -ItemSubKey $KeyExchangeAlgorithm -State $State if ($RebootWhenRequired) { Set-DscMachineRebootRequired } } function Test-TargetResource { [CmdletBinding()] [OutputType([System.Boolean])] param ( [Parameter(Mandatory = $true)] [ValidateSet('Diffie-Hellman', 'ECDH', 'PKCS')] [System.String] $KeyExchangeAlgorithm, [Parameter()] [ValidateSet('Enabled', 'Disabled', 'Default')] [System.String] $State = 'Default', [Parameter()] [System.Boolean] $RebootWhenRequired = $false ) Write-Verbose -Message ($script:localizedData.TestingConfiguration -f $KeyExchangeAlgorithm) $compareDscParameterStateParameters = @{ CurrentValues = Get-TargetResource @PSBoundParameters DesiredValues = $PSBoundParameters ExcludeProperties = @('RebootWhenRequired') TurnOffTypeChecking = $false } Test-DscParameterState @compareDscParameterStateParameters } |