Fatal编程技术网
  • powershell/
  • Powershell 删除本地用户帐户的“启用远程控制”

Powershell 删除本地用户帐户的“启用远程控制”

powershell

Powershell 删除本地用户帐户的“启用远程控制”,powershell,Powershell,我一直在考虑使用powershell设置本地帐户,我们要求取消选择启用远程控制选项 此选项位于“用户”下,右键单击并选择“属性”,然后在“远程”选项卡下取消选中“远程控制” 我在网上唯一能找到的是如何使用powershell启用或禁用远程桌面: 谢谢这可以使用p/Invoke来完成;下面是一个例子 #requires -version 2 Add-Type -MemberDefinition @" [DllImport("wtsapi32.dll", CharSet = CharSet.Uni

我一直在考虑使用powershell设置本地帐户,我们要求取消选择启用远程控制选项

此选项位于“用户”下,右键单击并选择“属性”,然后在“远程”选项卡下取消选中“远程控制”

我在网上唯一能找到的是如何使用powershell启用或禁用远程桌面:

谢谢

这可以使用p/Invoke来完成;下面是一个例子

#requires -version 2

Add-Type -MemberDefinition @"
[DllImport("wtsapi32.dll", CharSet = CharSet.Unicode, SetLastError = true)]
public static extern void WTSFreeMemory(IntPtr pMemory);
[DllImport("wtsapi32.dll", CharSet = CharSet.Unicode, SetLastError = true)]
public static extern bool WTSQueryUserConfig(
  string pServerName,
  string pUserName,
  int WTSConfigClass,
  out IntPtr ppBuffer,
  out uint pBytesReturned);
[DllImport("wtsapi32.dll", CharSet = CharSet.Unicode, SetLastError = true)]
public static extern bool WTSSetUserConfig(
  string pServerName,
  string pUserName,
  int WTSConfigClass,
  IntPtr pBuffer,
  uint DataLength);
"@ -Namespace Win32Api -Name WtsApi32

$WTS_CONFIG_SHADOWING_SETTINGS = 14

function WTSQueryUserConfigShadowSettings {
  [CmdletBinding()]
  param(
    [String] $computerName,
    [String] $userName
  )
  $pBuffer = [IntPtr]::Zero
  $bytesReturned = 0
  $success = [Win32Api.WtsApi32]::WTSQueryUserConfig(
    $computerName,                   # pServerName
    $userName,                       # pUserName
    $WTS_CONFIG_SHADOWING_SETTINGS,  # WTSConfigClass
    [Ref] $pBuffer,                  # ppBuffer
    [Ref] $bytesReturned             # pBytesReturned
  )
  if ( $success ) {
    [Runtime.InteropServices.Marshal]::ReadInt32($pBuffer)
    [Win32Api.WtsApi32]::WTSFreeMemory($pBuffer)
  }
  else {
    $exception = New-Object ComponentModel.Win32Exception ([Runtime.InteropServices.Marshal]::GetLastWin32Error())
    Write-Error -Exception $exception
  }
}

function WTSSetUserConfigShadowSettings {
  [CmdletBinding()]
  param(
    [String] $computerName,
    [String] $userName,
    [Int] [ValidateRange(0,4)] $shadowSettings
  )
  $pNewValue = [Runtime.InteropServices.Marshal]::AllocHGlobal([Runtime.InteropServices.Marshal]::SizeOf([Type] [Int]))
  [Runtime.InteropServices.Marshal]::WriteInt32($pNewValue, $shadowSettings)
  $dataLength = [Runtime.InteropServices.Marshal]::SizeOf($pNewValue)
  $success = [Win32Api.WtsApi32]::WTSSetUserConfig(
    $computerName,                    # pServerName
    $userName,                        # pUserName
    $WTS_CONFIG_SHADOWING_SETTINGS,   # WTSConfigClass
    $pNewValue,                       # pBuffer
    $dataLength                       # DataLength
  )
  if ( $success ) {
    [Runtime.InteropServices.Marshal]::FreeHGlobal($pNewValue)
  }
  else {
    $exception = New-Object ComponentModel.Win32Exception ([Runtime.InteropServices.Marshal]::GetLastWin32Error())
    Write-Error -Exception $exception
  }
}

function Get-RDShadowingSetting {
  [CmdletBinding()]
  param(
    [Parameter(Position = 0)]
      [String[]] [ValidateNotNullOrEmpty()] $UserName,
    [Parameter(ValueFromPipeline = $true,ValueFromPipelineByPropertyName = $true)]
      [String[]] $ComputerName = [Net.Dns]::GetHostName()
  )
  process {
    foreach ( $computerNameItem in $ComputerName ) {
      foreach ( $userNameItem in $userName ) {
        New-Object PSObject -Property @{
          "ComputerName"       = $computerNameItem
          "UserName"           = $userNameItem
          "RDShadowingSetting" = WTSQueryUserConfigShadowSettings $computerNameItem $userNameItem
        } | Select-Object ComputerName,UserName,RDShadowingSetting
      }
    }
  }
}

function Set-RDShadowingSetting {
  [CmdletBinding()]
  param(
    [Parameter(Position = 0)]
      [String[]] [ValidateNotNullOrEmpty()] $UserName,
    [Parameter(Position = 1)]
      [Int] [ValidateRange(0,4)] $RDShadowingSetting,
    [Parameter(ValueFromPipeline = $true,ValueFromPipelineByPropertyName = $true)]
      [String[]] $ComputerName = [Net.Dns]::GetHostName()
  )
  process {
    foreach ( $computerNameItem in $ComputerName ) {
      foreach ( $userNameItem in $userName ) {
        WTSSetUserConfigShadowSettings $computerNameItem $userNameItem $RDShadowingSetting
      }
    }
  }
}
Get-RDShadowingSetting函数在RDShadowingSetting属性中返回与要使用的设置对应的值0到4:

Value  Meaning
-----  -------
0      Disable remote control
1      Enabled/require user's permission/interact with the session
2      Enabled/don't require user's permission/interact with the session
3      Enabled/require user's permission/view the user's session
4      Enabled/don't require user's permission/view the user's session
Set-RDShadowingSetting函数用于更新用户的值;e、 g:

Set-RDShadowingSetting "KenDyer" 0
这将禁用本地计算机上KenDyer帐户的远程控制

WTSQueryUserConfigShadowSettings和WTSSetUserConfigShadowSettings函数是执行实际Windows API调用的函数

获取计算机或用户名列表是留给读者的一项练习

API文档链接:

对于任何感兴趣的人:我编写了一个PowerShell模块,用于获取和设置所有RD用户设置。如果您需要在没有通过GUI或命令行工具显示设置的计算机上管理这些设置,这可能很有用。该模块称为RDUserSetting,您可以在此处获得它:

使用此模块,回答此处问题的命令为:

Set-RDUserSetting kendyer -RDRemoteControlSetting Disabled
您还可以使用Get-RDUserSetting和管道查看RD用户设置。例如:

Get-RDUserSetting |
  Where-Object { $_.RDRemoteControlSetting -ne "Disabled" } |
  Set-RDUserSetting -RDRemoteControlSetting Disabled
此命令将为本地计算机上尚未设置RDRemoteControlSetting属性的每个用户将其设置为Disabled。警告:不要在域控制器上执行此操作