psPAS

5.5.110

Functions/AccountACL/Add-PASAccountACL.ps1

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
                                # .ExternalHelp psPAS-help.xml

function Add-PASAccountACL {

    [CmdletBinding()]

    param(

        [parameter(

            Mandatory = $true,

            ValueFromPipelinebyPropertyName = $true

        )]

        [Alias('PolicyID')]

        [Alias('PlatformID')]

        [ValidateNotNullOrEmpty()]

        [string]$AccountPolicyId,

        [parameter(

            Mandatory = $true,

            ValueFromPipelinebyPropertyName = $true

        )]

        [Alias('Address')]

        [ValidateNotNullOrEmpty()]

        [string]$AccountAddress,

        [parameter(

            Mandatory = $true,

            ValueFromPipelinebyPropertyName = $false

        )]

        [ValidateNotNullOrEmpty()]

        [string]$AccountUserName,

        [parameter(

            Mandatory = $true,

            ValueFromPipelinebyPropertyName = $false

        )]

        [ValidateNotNullOrEmpty()]

        [string]$Command,

        [parameter(

            Mandatory = $true,

            ValueFromPipelinebyPropertyName = $false

        )]

        [boolean]$CommandGroup,

        [parameter(

            Mandatory = $true,

            ValueFromPipelinebyPropertyName = $false

        )]

        [ValidateSet('Allow', 'Deny')]

        [string]$PermissionType,

        [parameter(

            Mandatory = $false,

            ValueFromPipelinebyPropertyName = $false

        )]

        [ValidateNotNullOrEmpty()]

        [string]$Restrictions,

        [parameter(

            Mandatory = $true,

            ValueFromPipelinebyPropertyName = $false

        )]

        [ValidateNotNullOrEmpty()]

        [string]$UserName

    )

    BEGIN { }#begin

    PROCESS {

        #URL for request

        $URI = "$Script:BaseURI/WebServices/PIMServices.svc/Account/$($AccountAddress |

            Get-EscapedString)|$($AccountUserName |

                Get-EscapedString)|$($AccountPolicyId |

                    Get-EscapedString)/PrivilegedCommands/"

        #Request body

        $Body = $PSBoundParameters |

            Get-PASParameter -ParametersToRemove AccountAddress, AccountUserName, AccountPolicyID |

            ConvertTo-Json

        #Send Request

        $result = Invoke-PASRestMethod -Uri $URI -Method PUT -Body $Body -WebSession $Script:WebSession

        If ($null -ne $result) {

            $result.AddAccountPrivilegedCommandResult |

                Add-ObjectDetail -typename psPAS.CyberArk.Vault.ACL.Account

        }

    }#process

    END { }#end

}