Woody Leonhard's no-bull news, tips and help for Windows, Office and more… Please disable your ad blocker – our (polite!) ads help keep AskWoody going!
Home icon Home icon Home icon Email icon RSS icon
  • Powers-h*ll

    Home Forums DevOps Lounge Powers-h*ll

    This topic contains 8 replies, has 3 voices, and was last updated by  PKCano 8 months, 1 week ago.

    • Author
      Posts
    • #174008 Reply

      anonymous
      I’m running into some issues on my PS script, I was hoping you could help me with.
       I’m using a wsdl with powershell (something I’ve never done) to update the password for an account that resides in HP’s CMDB. We have a tool call Secret Server (owned by Thycotic), that will run the Powershell script after it’s completed, to automate the rotation of these HP account passwords.
      [Edited to remove HTML]
    • #174016 Reply

      Paul T
      AskWoody MVP

      The Lounge doesn’t like HTML. Can you post the details in plain text, or use BBCodes?

      cheers, Paul

      • #174026 Reply

        PKCano
        AskWoody MVP

        If you use the “Text” tab at the top of the edit box when you cut/paste, I bellieve it will take the HTML out of the copy.

    • #174025 Reply

      anonymous

      Thanks for checking in Paul!

      [Edited to remove HTML]

    • #174038 Reply

      anonymous

      $url = “https://udmappprd001.lvh.com:8443/axis2/services/DiscoveryService?wsdl”

      $username = “Thycotic”

      $password = Read-Host -AsSecureString

      $creds = New-Object System.Management.Automation.PSCredential -ArgumentList $username, $password

      $webProxy = New-WebServiceProxy -Uri $url -Namespace UDCMDB -Credential $creds

      $cmdbContext = New-Object -TypeName UDCMDB.CmdbContext

      $cmdbContext.callerApplication = “SecretServerGetter”

      $GetCredReq = New-Object -TypeName UDCMDB.getCredentialsEntryRequest

      $GetCredReq.CmdbContext = $cmdbContext

      $GetCredReq.domainName = “DefaultDomain”

      $GetCredReq.protocolName = “ntadminprotocol” #the protocol name, this is where the creds are stored in the UDCMDB.

      $GetCredReq.credentialsEntryID = “352_1_CMS” #this is an identifier for the credentials stored in UDCMDB

      $entry=$webProxy.getCredentialsEntry($GetCredReq)

      $entry.credentialsEntryParameters.bytesProps = #secret server sends password as string, we need to convert to byte array

      $webProxy.updateCredentialsEntry($entry) #send the payload back with the update password

      #test password update in UD

    • #174045 Reply

      Paul T
      AskWoody MVP

      What is the part you have issues with? Do you get any error messages?

      cheers, Paul

    • #174041 Reply

      anonymous

      Text tab used: let’s see if this works.

       

      EDIT – it worked but would have been a duplicate. So I deleted the meat and leave this note to say it was good.
      PKCano

    • #174048 Reply

      anonymous

      The password is stored as a byte array in UDCMDB, so I need to convert it to powershell (again something I’ve never done and can’t figure out with google). The script snippet above gets the credential object from UDCMDB. The returned result is the credentialsEntryParameters object. The object has a few properties on it that can be set – get. One of these properties is a byteProp properties, this is the passwords as far as we can tell. And this is the one I will need to update. Once update, we send the object back to the updateCredentialsEntry method. I can’t just update the password property and send that, doing so will null the rest of the values (username, etc.).

      • #174084 Reply

        PKCano
        AskWoody MVP

        As an Anonymous poster, every one of your posts have to be moderated and may not appear immediately, depending on what is going on on the site. Pleas don’t re-post. Give us a few.

        If you register, after your first post there is no moderation delay. 🙂

        • This reply was modified 8 months, 1 week ago by  PKCano.

    Please follow the -Lounge Rules- no personal attacks, no swearing, and politics/religion are relegated to the Rants forum.

    Reply To: Powers-h*ll

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.

    Your information:


    Comments are closed.