Untitled

#user creation script
$listOU=Import-Csv -delimiter ";" -Path "C:\scripts\OU.csv"
ForEach($OU in $listOU){

try{
#Get Name and Path from the source file
$OUName = $OU.Name
$OUPath = $OU.Path

#Display the name and path of the new OU
Write-Host -Foregroundcolor Yellow $OUName $OUPath

#Create OU
New-ADOrganizationalUnit -Name "$OUName" -Path "$OUPath"

#Display confirmation
Write-Host -ForegroundColor Green "OU $OUName created"
}catch{

Write-Host $error[0].Exception.Message
}

}-Path "$alleOU" -ProtectedFromAccidentalDeletion $true

#groepen creator script

$csv = Import-Csv -delimiter ";" -Path "C:\scripts\groepen.csv"

ForEach ($item In $csv)
    {
        $create_group = New-ADGroup -Name $item.GroupName -GroupCategory $item.GroupCategory -groupScope $item.GroupScope
        Write-Host -ForegroundColor Green "Group $($item.GroupName) created!"
    }

Catch
{
    $ErrorMessage = $_.Exception.Message
    $FailedItem = $_.Exception.ItemName

    Break
}

#koppeling van DL naar GG
$global      = Get-ADGroup -Filter * -Properties * | Where-Object {$_.GroupScope -eq 'Global'}
$domainLocal = Get-ADGroup -filter * -Properties * | Where-Object {$_.GroupScope -eq 'DomainLocal'}

foreach ($group in $domainLocal) {

    Add-AdGroupMember -Identity $group.ObjectGuid -Member $global


}

#create active directory users
$users = Import-Csv -delimiter ";" -path c:/scripts/users3.csv

foreach($user in $users)
{
$fullname = $user.firstname + " " + $User.middlename + $user.lastname
$firstname = $user.firstname
$lastname = $user.lastname
$domain = "@cybertech.nl"
$upn = $user.firstname + $User.middlename + $user.lastname + $domain
$ou = $user.ou
$password = "Welkom01!"
$setpassword = ConvertTo-SecureString $password -AsPlainText -Force
$Usermiddlename = $User.middlename
$first,$last = ($firstname.toUpper()).Split(" ")
$letter = $first[0]
$username = $letter + $User.middlename + $lastname

New-ADUser -Name $username -displayname $fullname `
-GivenName $firstname -surname $lastname `
-SamAccountName $lastname `
-UserPrincipalName $upn `
-AccountPassword $setpassword -Enabled $true -PassThru `
-ChangePasswordAtLogon $false

}


$toevoegrechten = Get-ADUser -Identity $.user -filter *

foreach($user in $toevoegrechten){

Add-ADGroupMember -Identity $item.GroupCategory -Member $_.UserName -WhatIf

}


Import-CSV "C:\Scripts\Users.csv" | %

    $colRights      = [System.Security.Accesscontrol.FileSystemRights]"Read, Write, Modify"
    $inherltanceFlag = [system.security.accesscontrol.InheritanceFlags]"containerInherit, objectInherit"
    $propagationFlag = [system.security.accesscontrol.PropagationFlags]"None"

    $objType = [System.Security.Accesscontrol.AccesscontrolType]::Allow

    #Get Acl
    $ACL = Get-ACl $userObject.HomeDriyePath


    $acl.SetAccessRuleProtection($Faise, $True)

    $user = 'domain\' + $userObject.UserName
    $SecObject = $user

    $objuser = New-object System.Security.Principal.NTAccount($Secobject)

    $ACE = New-object System.Security.Accesscontrol.FileSystemAccessRule($objuser, $colRights, $InheritanceFlag, $PropagationFlag, $objType)

    $ACL. AddAccessRule($ACE)

    Set-ACL $userObject.HomeDriyePath $ACL


New-SmbShare  'data' -path d:\data -Name 'data'

$setting = get-wmiobject -Class Win32_LogicalShareSecuritySetting -filter "Name='data'"

$dacls = $setting.GetSecurityDescriptor().Descriptor.Dacl

$revised = @()

foreach ($dacl in $dacls) {
if ($dacl.Trustee.Name -ne 'Everyone') {
$revised += $dacl

#export output to a file

Get-ADUser -Filter * |
  Select -Property GivenName,Surname,Name,SAMAccountName,DistinguishedName |
  Export-CSV -Delimiter ";" "C:\\ADUsers.csv" -NoTypeInformation -Encoding UTF8


Get-ADgroup -Filter * |
  Select -Property Name |
  Export-CSV -Delimiter ";" "C:\\ADgroup.csv" -NoTypeInformation -Encoding UTF8

Get-ADOrganizationalUnit -Filter * |
  Select -Property Name |
  Export-CSV -Delimiter ";" "C:\\AD-OU.csv" -NoTypeInformation -Encoding UTF8

Get-smbshare |
  Select -Property Name |
  Export-CSV -Delimiter ";" "C:\\AD-share.csv" -NoTypeInformation -Encoding UTF8