DSCResources/MSFT_SPUserProfileServiceApp/MSFT_SPUserProfileServiceApp.psm1
|
function Get-TargetResource { [CmdletBinding()] [OutputType([System.Collections.Hashtable])] param ( [parameter(Mandatory = $true)] [System.String] $Name, [parameter(Mandatory = $false)] [System.String] $ProxyName, [parameter(Mandatory = $true)] [System.String] $ApplicationPool, [parameter(Mandatory = $false)] [System.Management.Automation.PSCredential] $FarmAccount, [parameter(Mandatory = $false)] [System.String] $MySiteHostLocation, [parameter(Mandatory = $false)] [System.String] $ProfileDBName, [parameter(Mandatory = $false)] [System.String] $ProfileDBServer, [parameter(Mandatory = $false)] [System.String] $SocialDBName, [parameter(Mandatory = $false)] [System.String] $SocialDBServer, [parameter(Mandatory = $false)] [System.String] $SyncDBName, [parameter(Mandatory = $false)] [System.String] $SyncDBServer, [parameter(Mandatory = $false)] [System.Boolean] $EnableNetBIOS = $false, [parameter(Mandatory = $false)] [System.Boolean] $NoILMUsed = $false, [parameter(Mandatory = $false)] [ValidateSet("Present","Absent")] [System.String] $Ensure = "Present", [parameter(Mandatory = $false)] [System.Management.Automation.PSCredential] $InstallAccount ) Write-Verbose -Message "Getting user profile service application $Name" $result = Invoke-SPDSCCommand -Credential $InstallAccount ` -Arguments $PSBoundParameters ` -ScriptBlock { $params = $args[0] $serviceApps = Get-SPServiceApplication -Name $params.Name -ErrorAction SilentlyContinue $nullReturn = @{ Name = $params.Name Ensure = "Absent" } if ($null -eq $serviceApps) { return $nullReturn } $serviceApp = $serviceApps | Where-Object -FilterScript { $_.GetType().FullName -eq "Microsoft.Office.Server.Administration.UserProfileApplication" } if ($null -eq $serviceApp) { return $nullReturn } else { $databases = @{} $propertyFlags = [System.Reflection.BindingFlags]::Instance ` -bor [System.Reflection.BindingFlags]::NonPublic $propData = $serviceApp.GetType().GetProperties($propertyFlags) $socialProp = $propData | Where-Object -FilterScript { $_.Name -eq "SocialDatabase" } $databases.Add("SocialDatabase", $socialProp.GetValue($serviceApp)) $profileProp = $propData | Where-Object -FilterScript { $_.Name -eq "ProfileDatabase" } $databases.Add("ProfileDatabase", $profileProp.GetValue($serviceApp)) $syncProp = $propData | Where-Object -FilterScript { $_.Name -eq "SynchronizationDatabase" } $databases.Add("SynchronizationDatabase", $syncProp.GetValue($serviceApp)) $spFarm = Get-SPFarm if ($params.FarmAccount.UserName -eq $spFarm.DefaultServiceAccount.Name) { $farmAccount = $params.FarmAccount } else { $farmAccount = $spFarm.DefaultServiceAccount.Name } $serviceAppProxies = Get-SPServiceApplicationProxy -ErrorAction SilentlyContinue if ($null -ne $serviceAppProxies) { $serviceAppProxy = $serviceAppProxies | Where-Object -FilterScript { $serviceApp.IsConnected($_) } if ($null -ne $serviceAppProxy) { $proxyName = $serviceAppProxy.Name } } return @{ Name = $serviceApp.DisplayName ProxyName = $proxyName ApplicationPool = $serviceApp.ApplicationPool.Name FarmAccount = $farmAccount MySiteHostLocation = $params.MySiteHostLocation ProfileDBName = $databases.ProfileDatabase.Name ProfileDBServer = $databases.ProfileDatabase.Server.Name SocialDBName = $databases.SocialDatabase.Name SocialDBServer = $databases.SocialDatabase.Server.Name SyncDBName = $databases.SynchronizationDatabase.Name SyncDBServer = $databases.SynchronizationDatabase.Server.Name InstallAccount = $params.InstallAccount EnableNetBIOS = $serviceApp.NetBIOSDomainNamesEnabled NoILMUsed = $serviceApp.NoILMUsed Ensure = "Present" } } } return $result } function Set-TargetResource { [CmdletBinding()] param ( [parameter(Mandatory = $true)] [System.String] $Name, [parameter(Mandatory = $false)] [System.String] $ProxyName, [parameter(Mandatory = $true)] [System.String] $ApplicationPool, [parameter(Mandatory = $false)] [System.Management.Automation.PSCredential] $FarmAccount, [parameter(Mandatory = $false)] [System.String] $MySiteHostLocation, [parameter(Mandatory = $false)] [System.String] $ProfileDBName, [parameter(Mandatory = $false)] [System.String] $ProfileDBServer, [parameter(Mandatory = $false)] [System.String] $SocialDBName, [parameter(Mandatory = $false)] [System.String] $SocialDBServer, [parameter(Mandatory = $false)] [System.String] $SyncDBName, [parameter(Mandatory = $false)] [System.String] $SyncDBServer, [parameter(Mandatory = $false)] [System.Boolean] $EnableNetBIOS = $false, [parameter(Mandatory = $false)] [System.Boolean] $NoILMUsed = $false, [parameter(Mandatory = $false)] [ValidateSet("Present","Absent")] [System.String] $Ensure = "Present", [parameter(Mandatory = $false)] [System.Management.Automation.PSCredential] $InstallAccount ) Write-Verbose -Message "Setting user profile service application $Name" if ($Ensure -eq "Present") { if ($PSBoundParameters.ContainsKey("FarmAccount") -eq $false) { throw ("Unable to provision the user profile service without the Farm Account. " + ` "Please specify the FarmAccount parameter and try again") return } Write-Verbose -Message "Creating user profile service application $Name" # Add the FarmAccount to the local Administrators group, if it's not already there $isLocalAdmin = Test-SPDSCUserIsLocalAdmin -UserName $FarmAccount.UserName if (!$isLocalAdmin) { Add-SPDSCUserToLocalAdmin -UserName $FarmAccount.UserName } $result = Invoke-SPDSCCommand -Credential $FarmAccount ` -Arguments $PSBoundParameters ` -ScriptBlock { $params = $args[0] $updateEnableNetBIOS = $false if ($params.ContainsKey("EnableNetBIOS")) { $updateEnableNetBIOS = $true $enableNetBIOS = $params.EnableNetBIOS $params.Remove("EnableNetBIOS") | Out-Null } $updateNoILMUsed = $false if ($params.ContainsKey("NoILMUsed")) { $updateNoILMUsed = $true $NoILMUsed = $params.NoILMUsed $params.Remove("NoILMUsed") | Out-Null } if ($params.ContainsKey("InstallAccount")) { $params.Remove("InstallAccount") | Out-Null } if ($params.ContainsKey("Ensure")) { $params.Remove("Ensure") | Out-Null } $params.Remove("FarmAccount") | Out-Null $params = Rename-SPDSCParamValue -params $params ` -oldName "SyncDBName" ` -newName "ProfileSyncDBName" $params = Rename-SPDSCParamValue -params $params ` -oldName "SyncDBServer" ` -newName "ProfileSyncDBServer" if ($params.ContainsKey("ProxyName")) { $pName = $params.ProxyName $params.Remove("ProxyName") | Out-Null } if ($null -eq $pName) { $pName = "$($params.Name) Proxy" } $serviceApps = Get-SPServiceApplication -Name $params.Name ` -ErrorAction SilentlyContinue $app = $serviceApps | Select-Object -First 1 if ($null -eq $serviceApps) { $app = New-SPProfileServiceApplication @params if ($null -ne $app) { New-SPProfileServiceApplicationProxy -Name $pName ` -ServiceApplication $app ` -DefaultProxyGroup } } if (($updateEnableNetBIOS -eq $true) -or ($updateNoILMUsed -eq $true)) { if (($updateEnableNetBIOS -eq $true) -and ` ($app.NetBIOSDomainNamesEnabled -ne $enableNetBIOS)) { $app.NetBIOSDomainNamesEnabled = $enableNetBIOS } if (($updateNoILMUsed -eq $true) -and ` ($app.NoILMUsed -ne $NoILMUsed)) { $app.NoILMUsed = $NoILMUsed } $app.Update() } } # Remove the FarmAccount from the local Administrators group, if it was added above if (!$isLocalAdmin) { Remove-SPDSCUserToLocalAdmin -UserName $FarmAccount.UserName } } if ($Ensure -eq "Absent") { Write-Verbose -Message "Removing user profile service application $Name" Invoke-SPDSCCommand -Credential $InstallAccount ` -Arguments $PSBoundParameters ` -ScriptBlock { $params = $args[0] $app = Get-SPServiceApplication -Name $params.Name ` | Where-Object -FilterScript { $_.GetType().FullName -eq "Microsoft.Office.Server.Administration.UserProfileApplication" } $proxies = Get-SPServiceApplicationProxy foreach($proxyInstance in $proxies) { if($app.IsConnected($proxyInstance)) { $proxyInstance.Delete() } } Remove-SPServiceApplication -Identity $app -Confirm:$false } } } function Test-TargetResource { [CmdletBinding()] [OutputType([System.Boolean])] param ( [parameter(Mandatory = $true)] [System.String] $Name, [parameter(Mandatory = $false)] [System.String] $ProxyName, [parameter(Mandatory = $true)] [System.String] $ApplicationPool, [parameter(Mandatory = $false)] [System.Management.Automation.PSCredential] $FarmAccount, [parameter(Mandatory = $false)] [System.String] $MySiteHostLocation, [parameter(Mandatory = $false)] [System.String] $ProfileDBName, [parameter(Mandatory = $false)] [System.String] $ProfileDBServer, [parameter(Mandatory = $false)] [System.String] $SocialDBName, [parameter(Mandatory = $false)] [System.String] $SocialDBServer, [parameter(Mandatory = $false)] [System.String] $SyncDBName, [parameter(Mandatory = $false)] [System.String] $SyncDBServer, [parameter(Mandatory = $false)] [System.Boolean] $EnableNetBIOS = $false, [parameter(Mandatory = $false)] [System.Boolean] $NoILMUsed = $false, [parameter(Mandatory = $false)] [ValidateSet("Present","Absent")] [System.String] $Ensure = "Present", [parameter(Mandatory = $false)] [System.Management.Automation.PSCredential] $InstallAccount ) Write-Verbose -Message "Testing for user profile service application $Name" $PSBoundParameters.Ensure = $Ensure $CurrentValues = Get-TargetResource @PSBoundParameters if($Ensure -eq "Present") { return Test-SPDscParameterState -CurrentValues $CurrentValues ` -DesiredValues $PSBoundParameters ` -ValuesToCheck @("Name", "EnableNetBIOS", "NoILMUsed", "Ensure") } else { return Test-SPDscParameterState -CurrentValues $CurrentValues ` -DesiredValues $PSBoundParameters ` -ValuesToCheck @("Name", "Ensure") } } Export-ModuleMember -Function *-TargetResource |