psPAS

2.6.17

Functions/User/Remove-PASGroupMember.ps1

                                function Remove-PASGroupMember {

    <#

.SYNOPSIS

Removes a vault user from a group

.DESCRIPTION

Removes an existing member from an existing group in the vault

.PARAMETER GroupID

The ID of the group

.PARAMETER Member

The name of the group member

.PARAMETER sessionToken

Hashtable containing the session token returned from New-PASSession

.PARAMETER WebSession

WebRequestSession object returned from New-PASSession

.PARAMETER BaseURI

PVWA Web Address

Do not include "/PasswordVault/"

.PARAMETER PVWAAppName

The name of the CyberArk PVWA Virtual Directory.

Defaults to PasswordVault

.PARAMETER ExternalVersion

The External CyberArk Version, returned automatically from the New-PASSession function from version 9.7 onwards.

If the minimum version requirement of this function is not satisfied, execution will be halted.

Omitting a value for this parameter, or supplying a version of "0.0" will skip the version check.

.EXAMPLE

$token | Remove-PASGroupMember -GroupID X1_Y2 -Member TargetUser

Removes TargetUser from group

.INPUTS

All parameters can be piped by property name

.OUTPUTS

None

.NOTES

.LINK

#>

    [CmdletBinding(SupportsShouldProcess)]

    param(

        [parameter(

            Mandatory = $true,

            ValueFromPipelinebyPropertyName = $true

        )]

        [Alias("ID")]

        [string]$GroupID,

        [parameter(

            Mandatory = $true,

            ValueFromPipelinebyPropertyName = $true

        )]

        [Alias("UserName")]

        [string]$Member,

        [parameter(

            Mandatory = $true,

            ValueFromPipelinebyPropertyName = $true

        )]

        [ValidateNotNullOrEmpty()]

        [hashtable]$sessionToken,

        [parameter(

            ValueFromPipelinebyPropertyName = $true

        )]

        [Microsoft.PowerShell.Commands.WebRequestSession]$WebSession,

        [parameter(

            Mandatory = $true,

            ValueFromPipelinebyPropertyName = $true

        )]

        [string]$BaseURI,

        [parameter(

            Mandatory = $false,

            ValueFromPipelinebyPropertyName = $true

        )]

        [string]$PVWAAppName = "PasswordVault",

        [parameter(

            Mandatory = $false,

            ValueFromPipelinebyPropertyName = $true

        )]

        [System.Version]$ExternalVersion = "0.0"

    )

    BEGIN {

        $MinimumVersion = [System.Version]"10.5"

    }#begin

    PROCESS {

        Assert-VersionRequirement -ExternalVersion $ExternalVersion -RequiredVersion $MinimumVersion

        #Create URL for request

        $URI = "$baseURI/$PVWAAppName/API/UserGroups/$GroupID/members/$Member"

        if($PSCmdlet.ShouldProcess($GroupID, "Remove Group Member $Member")) {

            #send request to web service

            Invoke-PASRestMethod -Uri $URI -Method DELETE -Headers $sessionToken -WebSession $WebSession

        }

    }#process

    END {}#end

}