Functions/PolicyACL/Remove-PASPolicyACL.ps1
|
function Remove-PASPolicyACL { <# .SYNOPSIS Delete all privileged commands on policy .DESCRIPTION Deletes all privileged command rules associated with the policy .PARAMETER PolicyID String value of Policy ID .PARAMETER Id The Rule Id that will be deleted .PARAMETER sessionToken Hashtable containing the session token returned from New-PASSession .PARAMETER WebSession WebRequestSession object returned from New-PASSession .PARAMETER BaseURI PVWA Web Address Do not include "/PasswordVault/" .PARAMETER PVWAAppName The name of the CyberArk PVWA Virtual Directory. Defaults to PasswordVault .EXAMPLE $token | Remove-PASPolicyACL -PolicyID UNIXSSH -Id 13 Deletes Rule with ID of 13 from UNIXSSH platform. .INPUTS All parameters can be piped by property name .OUTPUTS None .NOTES .LINK #> [CmdletBinding(SupportsShouldProcess)] param( [parameter( Mandatory = $true, ValueFromPipelinebyPropertyName = $true )] [ValidateNotNullOrEmpty()] [string]$PolicyID, [parameter( Mandatory = $true, ValueFromPipelinebyPropertyName = $true )] [string]$Id, [parameter( Mandatory = $true, ValueFromPipelinebyPropertyName = $true )] [ValidateNotNullOrEmpty()] [hashtable]$sessionToken, [parameter( ValueFromPipelinebyPropertyName = $true )] [Microsoft.PowerShell.Commands.WebRequestSession]$WebSession, [parameter( Mandatory = $true, ValueFromPipelinebyPropertyName = $true )] [string]$BaseURI, [parameter( Mandatory = $false, ValueFromPipelinebyPropertyName = $true )] [string]$PVWAAppName = "PasswordVault" ) BEGIN {}#begin PROCESS { #Create base URL for request $URI = "$baseURI/$PVWAAppName/WebServices/PIMServices.svc/Policy/$($PolicyID | Get-EscapedString)/PrivilegedCommands/$($Id | Get-EscapedString)" if($PSCmdlet.ShouldProcess($PolicyID, "Delete Rule $Id")) { #send request to web service Invoke-PASRestMethod -Uri $URI -Method DELETE -Headers $sessionToken -WebSession $WebSession } }#process END {}#end } |