JAMS User ACL Audit Report

Follow

    

### This script will display the ACL information for the entire list of JAMS users stored in the Users shortcut,

### Import the JAMS module
Import-Module JAMS


### Get our user list
$usersList = Get-ChildItem JAMS::localhost\Users\* | Sort-Object -Property Name


### Loop through each object and read the ACL information, displaying the entry for each

foreach ($user in $usersList)
{
 Write-Host "User: $($user.UserName)"
 foreach ($ace in $user.Acl.GenericACL)
 {
        $accessNames = ""
  
  
  if (($ace.AccessBits -band [MVPSI.JAMS.UserAccess]::Control) -ne 0)
  {
   $accessNames = $accessNames + "Control "
  }
  if (($ace.AccessBits -band [MVPSI.JAMS.UserAccess]::Change) -ne 0)
  {
   $accessNames = $accessNames + "Change "
  }
  if (($ace.AccessBits -band [MVPSI.JAMS.UserAccess]::Submit) -ne 0)
  {
   $accessNames = $accessNames + "Submit "
  }
  if (($ace.AccessBits -band [MVPSI.JAMS.UserAccess]::GetPassword) -ne 0)
  {
   $accessNames = $accessNames + "Get Password "
  }
  Write-Host " Identifier: $($ace.Identifier)"
        Write-Host " Access: $($accessNames)"
 }

} 

    

Have more questions? Submit a request

Comments