Category Archives: PowerShell - Page 2

Check the date of a certificate from a polled URL with PowerShell

Posted by Chris Allen on February 4, 2017 3 comments

I recently setup LetsEncrypt on this blog. With all the insecure connection url bar indicators quickly becoming default on the modern browsers, this great open source project really comes through and makes securing your site with a SSL/TLS certificate easy. And of course, in the spirit of open source, the certificates are free!

As part of using LetsEncrypt, you need to automate your certificate renewals. So once I got everything setup and a cron job configured to handle the renewals, I wanted to log the date of my current certificate from a web call on my home computer.

Here is the PowerShell I used to get the certificate date information which then can be logged

$webcall = Invoke-WebRequest https://packetlost.com/blog
$servicePoint = [System.Net.ServicePointManager]::FindServicePoint("https://packetlost.com/blog")
$servicePoint.Certificate.GetCertHashString()
$servicePoint.Certificate.GetExpirationDateString()

$webcall = Invoke-WebRequest https://packetlost.com/blog

$servicePoint = [System.Net.ServicePointManager]::FindServicePoint("https://packetlost.com/blog")

$servicePoint.Certificate.GetCertHashString()

$servicePoint.Certificate.GetExpirationDateString()

Delete ElasticSearch indexes with powershell

Posted by Chris Allen on September 5, 2016 No comments

So I followed this AWS blog and this documentation to launch a tiny t2 elasticsearch cluster to visualize VPC flow logs. Those links have instructions that guide you along setting up flow logs to flow into ES in a few different ways. I ended up following the documentation link and then downloading some kibana3 dashboards until I found one I liked.

Over time however, the little t2 ES cluster could not keep up, and I ran out of storage space and CPU credits. So I wanted to automate the deletion of indices / indexes so that the cluster would free up storage space and not churn through CPU. With more RAM available the cluster uses less CPU, so I had to limit how much data the single node ES cluster is storing. There is plenty of documentation online on how to use curl to delete elasticsearch indexes but I’m on windows most of the time so I decided to write a quick a powershell script to do it.

To use this script just update the esdomain variable to point to your ES cluster name. Also this filter will only work if the lambda script is creating cwl- indexes. Tweak it if your indexes are different. Run it and it will keep the last 2 weeks of indexes and delete anything older.

$webclient = New-Object system.net.webclient
$esdomain = "https://search-YOURCLUSTERNAMEGOESHERE.us-east-1.es.amazonaws.com"
$daystokeep = 14

$indexes = $webclient.DownloadString("$($esdomain)/_aliases?pretty=1")
$indexeslist=($indexes.split('"',[System.StringSplitOptions]::RemoveEmptyEntries) | Select-String -AllMatches 'cwl-') | Sort-Object -Descending
$indexeslistcount = ($indexeslist | Measure-Object).Count

if ($indexeslistcount -gt $daystokeep) {
$indexeslist | Select-Object -Skip $daystokeep | ForEach-Object { $webclient.UploadString("$($esdomain)/$($_)","DELETE",0) }
}

$webclient = New-Object system.net.webclient

$esdomain = "https://search-YOURCLUSTERNAMEGOESHERE.us-east-1.es.amazonaws.com"

$daystokeep = 14

$indexes = $webclient.DownloadString("$($esdomain)/_aliases?pretty=1")

$indexeslist=($indexes.split('"',[System.StringSplitOptions]::RemoveEmptyEntries) | Select-String -AllMatches 'cwl-') | Sort-Object -Descending

$indexeslistcount = ($indexeslist | Measure-Object).Count

if ($indexeslistcount -gt $daystokeep) {

$indexeslist | Select-Object -Skip $daystokeep | ForEach-Object { $webclient.UploadString("$($esdomain)/$($_)","DELETE",0) }

}

Cleanup IIS Logs AutoMagically

Posted by Chris Allen on January 24, 2015 No comments

First head over to the Microsoft Script Gallery and grab deleteold.ps1 by Jaap Brasser.

I tend to copy scripts to c:\scripts on systems so I copied deleteold.ps1 there and created two new batch files there as well.

The first was used to launch the powershell script with switches that will delete all files in the IIS Logs directory older than 90 days and append to a log of all actions taken.

IISLogsCleanUp.bat :

powershell.exe -ExecutionPolicy bypass -File C:\scripts\deleteold.ps1 -FolderPath C:\inetpub\logs -FileAge 90 -VerboseLog -AppendLog -LogFile "C:\scripts\logcleanup.log"

1	powershell.exe -ExecutionPolicy bypass -File C:\scripts\deleteold.ps1 -FolderPath C:\inetpub\logs -FileAge 90 -VerboseLog -AppendLog -LogFile "C:\scripts\logcleanup.log"

The second batch file registers a task that runs this script weekly. Right click this batch and run as administrator and IIS logs will no longer be a thorn in your side.

IISLogCleanUpTaskReg.bat :

schtasks /create /tn "CleanUpIISLogs" /ru "SYSTEM" /tr "c:\scripts\IISLogsCleanUp.bat" /sc weekly /mo 1 /d SUN /st 05:01

1	schtasks /create /tn "CleanUpIISLogs" /ru "SYSTEM" /tr "c:\scripts\IISLogsCleanUp.bat" /sc weekly /mo 1 /d SUN /st 05:01

As usual, customize as needed! Next on my list is for this repetitive task is creating a powershell remoting script to copy these files to remote servers and execute the task register command.

VMware Tools Check – PowerCLI Email Report

Posted by Chris Allen on January 24, 2015 No comments

The last two posts I made utilize PowerCLI and VMware tools to gather information for reporting. So what happens if VMware tools is not running…. things fall through the cracks!

Luckily, we can report on VMware tools status too.

#Timestamp the transcript and start it
$currentdate = (Get-Date).tostring("yyyy-MM-dd")
$transfilename = 'ToolsRunningCheck_' + $currentdate + '.txt'
$transfilepath = 'C:\scripts\Transcripts\' + $transfilename
Start-Transcript $transfilepath -NoClobber -Append

#Load PowerCLI snapins and dot source them
Add-PSSnapin vmware.vimautomation.core
. "C:\Program Files (x86)\VMware\Infrastructure\vSphere PowerCLI\Scripts\Initialize-PowerCLIEnvironment.ps1"


Connect-VIServer vcenterserver.company.com

#Generating timestamped log name for powercli html output
$outfilename = 'ToolsRunningCheck_' + $currentdate + '.htm'
$outfilepath = 'C:\Scripts\Output\' + $outfilename

$PoweredOnVMs = Get-VM | Where-Object {$_.PowerState -eq "PoweredOn"}

$VMswithoutRunningTools = $PoweredOnVMs | Get-View | Where-Object {($_.Guest.ToolsStatus -match "toolsNotInstalled") -or ($_.Guest.ToolsStatus -match "toolsNotRunning") }   | Select-Object Name,@{Name="Status";Expression={$_.Guest.ToolsStatus}}

if ($VMswithoutRunningTools) { $VMswithoutRunningTools | Sort-Object Name | ConvertTo-Html | Out-File $outfilepath }

#variables for email output
$eto = "youremail@company.com"
$efrom = "PowerCLI_Reports <PowerCLIReports@company.com>"
$esubject = "Virtual Machines with VMware Tools problems"
If ($VMswithoutRunningTools) { $ebody = (Get-Content $outfilepath | Out-String) }
$eserver = "smtpserver.company.com"




If ($VMswithoutRunningTools) { Send-MailMessage -From $efrom -To $eto -Subject $esubject -BodyAsHtml -Body $ebody -smtpserver $eserver }
Else { Send-MailMessage -From $efrom -To $eto  -Subject $esubject -Body "There are no VMs reporting VMware Tools is not installed" -smtpserver $eserver }

#Timestamp the transcript and start it

$currentdate = (Get-Date).tostring("yyyy-MM-dd")

$transfilename = 'ToolsRunningCheck_' + $currentdate + '.txt'

$transfilepath = 'C:\scripts\Transcripts\' + $transfilename

Start-Transcript $transfilepath -NoClobber -Append

#Load PowerCLI snapins and dot source them

Add-PSSnapin vmware.vimautomation.core

. "C:\Program Files (x86)\VMware\Infrastructure\vSphere PowerCLI\Scripts\Initialize-PowerCLIEnvironment.ps1"

Connect-VIServer vcenterserver.company.com

#Generating timestamped log name for powercli html output

$outfilename = 'ToolsRunningCheck_' + $currentdate + '.htm'

$outfilepath = 'C:\Scripts\Output\' + $outfilename

$PoweredOnVMs = Get-VM | Where-Object {$_.PowerState -eq "PoweredOn"}

$VMswithoutRunningTools = $PoweredOnVMs | Get-View | Where-Object {($_.Guest.ToolsStatus -match "toolsNotInstalled") -or ($_.Guest.ToolsStatus -match "toolsNotRunning") } | Select-Object Name,@{Name="Status";Expression={$_.Guest.ToolsStatus}}

if ($VMswithoutRunningTools) { $VMswithoutRunningTools | Sort-Object Name | ConvertTo-Html | Out-File $outfilepath }

#variables for email output

$eto = "youremail@company.com"

$efrom = "PowerCLI_Reports <PowerCLIReports@company.com>"

$esubject = "Virtual Machines with VMware Tools problems"

If ($VMswithoutRunningTools) { $ebody = (Get-Content $outfilepath | Out-String) }

$eserver = "smtpserver.company.com"

If ($VMswithoutRunningTools) { Send-MailMessage -From $efrom -To $eto -Subject $esubject -BodyAsHtml -Body $ebody -smtpserver $eserver }

Else { Send-MailMessage -From $efrom -To $eto -Subject $esubject -Body "There are no VMs reporting VMware Tools is not installed" -smtpserver $eserver }

Virtual Machine Guest Disk Free Space – PowerCLI Email Report

Posted by Chris Allen on January 24, 2015 No comments

I expanded upon a useful sharing from over at the VMware community site.

Below is some code you can use to run against vcenter to get an emailed report of all virtual machines with low free space. The VMs need to have vmware tools running for this report. Don’t worry, I’ll post a script to check on that too!

As a personal preference I like to create a service account with logon as batch rights on a system to run this script. I then provision this same service account with read only privileges to vCenter. Once those things are setup the powershell script can be ran from task scheduler (using least privileged, yay).

Another thing I like to do is to capture transcripts and outputs of any scripts I run. This way if I have an SMTP issue or lose the email, I can go back and check files to see what was in previous reports or any errors that the script encountered.

You will want to edit the vcenter server name, the output file path, and email addresses before using this script. The script will email any VMs with drives that have less than 10% free space, of course, you can customize that % as well.

$currentdate = (Get-Date).tostring("yyyy-MM-dd")
$transfilename = 'OldSnapsTranscript_' + $currentdate + '.txt'
$transfilepath = 'C:\scripts\Transcripts\' + $transfilename
Start-Transcript $transfilepath -NoClobber -Append


#Load PowerCLI snapins and dot source them
Add-PSSnapin vmware.vimautomation.core
. "C:\Program Files (x86)\VMware\Infrastructure\vSphere PowerCLI\Scripts\Initialize-PowerCLIEnvironment.ps1"


#Connect to vcenter
Connect-VIServer vcenterserver.company.com

#Generating timestamped log name for powercli html output
$outfilename = 'VMFreeSpace_' + $currentdate + '.htm'
$outfilepath = 'C:\Scripts\Output\' + $outfilename

$PoweredOnVMwithTools = Get-VM | Where-Object {($_.PowerState -eq "PoweredOn") -and (($_.Extensiondata.Guest.ToolsStatus -eq "toolsOk") -or ($_.Extensiondata.Guest.ToolsStatus -eq "toolsOld")) }

$DriveReportArray = @()

ForEach ($VM in $PoweredOnVMwithTools){
ForEach ($Drive in $VM.ExtensionData.Guest.Disk){

$Path = $Drive.DiskPath

 

#Calculations 

$Freespace = [math]::Round($Drive.FreeSpace / 1MB)

$Capacity = [math]::Round($Drive.Capacity/ 1MB)

 

$SpaceOverview = "$Freespace" + "/" + "$capacity" 

$PercentFree = [math]::Round(($FreeSpace)/ ($Capacity) * 100) 

 

#VMs with less space

if ($PercentFree -lt 10) {     

    
    $newobj = New-Object -TypeName PSObject
    
    $newobj | Add-Member -Type NoteProperty -Name VM -Value $VM.name

    $newobj | Add-Member -Type NoteProperty -Name Disk -Value $Path

    $newobj | Add-Member -Type NoteProperty -Name FreeMB -Value $Freespace

    $newobj | Add-Member -Type NoteProperty -Name PercentFree -Value $PercentFree

    $DriveReportArray += $newobj
  

}

 

} # End ForEach ($Drive in in $VM.Extensiondata.Guest.Disk)

 

} # End ForEach ($VM in $PoweredOnVMwithTools)


if ($DriveReportArray) { $DriveReportArray | Sort-Object FreeMB | ConvertTo-Html | Out-File $outfilepath }


#variables for email output
$eto = "youremail@company.com"
$efrom = "PowerCLI_Reports <PowerCLIReports@company.com>"
$esubject = "Virtual Machine Guest Disks Low Free Space Report"
If ($DriveReportArray) { $ebody = (Get-Content $outfilepath | Out-String) }
$eserver = "smtpserver.company.com"

If ($DriveReportArray) { Send-MailMessage -From $efrom -To $eto -Subject $esubject -BodyAsHtml -Body $ebody -smtpserver $eserver }
Else { Send-MailMessage -From $efrom -To $eto  -Subject $esubject -Body "There are no VMs with low free space in this report" -smtpserver $eserver }

$currentdate = (Get-Date).tostring("yyyy-MM-dd")

$transfilename = 'OldSnapsTranscript_' + $currentdate + '.txt'

$transfilepath = 'C:\scripts\Transcripts\' + $transfilename

Start-Transcript $transfilepath -NoClobber -Append

#Load PowerCLI snapins and dot source them

Add-PSSnapin vmware.vimautomation.core

. "C:\Program Files (x86)\VMware\Infrastructure\vSphere PowerCLI\Scripts\Initialize-PowerCLIEnvironment.ps1"

#Connect to vcenter

Connect-VIServer vcenterserver.company.com

#Generating timestamped log name for powercli html output

$outfilename = 'VMFreeSpace_' + $currentdate + '.htm'

$outfilepath = 'C:\Scripts\Output\' + $outfilename

$PoweredOnVMwithTools = Get-VM | Where-Object {($_.PowerState -eq "PoweredOn") -and (($_.Extensiondata.Guest.ToolsStatus -eq "toolsOk") -or ($_.Extensiondata.Guest.ToolsStatus -eq "toolsOld")) }

$DriveReportArray = @()

ForEach ($VM in $PoweredOnVMwithTools){

ForEach ($Drive in $VM.ExtensionData.Guest.Disk){

$Path = $Drive.DiskPath

#Calculations

$Freespace = [math]::Round($Drive.FreeSpace / 1MB)

$Capacity = [math]::Round($Drive.Capacity/ 1MB)

$SpaceOverview = "$Freespace" + "/" + "$capacity"

$PercentFree = [math]::Round(($FreeSpace)/ ($Capacity) * 100)

#VMs with less space

if ($PercentFree -lt 10) {

$newobj = New-Object -TypeName PSObject

$newobj | Add-Member -Type NoteProperty -Name VM -Value $VM.name

$newobj | Add-Member -Type NoteProperty -Name Disk -Value $Path

$newobj | Add-Member -Type NoteProperty -Name FreeMB -Value $Freespace

$newobj | Add-Member -Type NoteProperty -Name PercentFree -Value $PercentFree

$DriveReportArray += $newobj

}

} # End ForEach ($Drive in in $VM.Extensiondata.Guest.Disk)

} # End ForEach ($VM in $PoweredOnVMwithTools)

if ($DriveReportArray) { $DriveReportArray | Sort-Object FreeMB | ConvertTo-Html | Out-File $outfilepath }

#variables for email output

$eto = "youremail@company.com"

$efrom = "PowerCLI_Reports <PowerCLIReports@company.com>"

$esubject = "Virtual Machine Guest Disks Low Free Space Report"

If ($DriveReportArray) { $ebody = (Get-Content $outfilepath | Out-String) }

$eserver = "smtpserver.company.com"

If ($DriveReportArray) { Send-MailMessage -From $efrom -To $eto -Subject $esubject -BodyAsHtml -Body $ebody -smtpserver $eserver }

Else { Send-MailMessage -From $efrom -To $eto -Subject $esubject -Body "There are no VMs with low free space in this report" -smtpserver $eserver }

Automating AWS with PowerShell

Posted by Chris Allen on January 24, 2015 No comments

I often have to turn on instances or register them with load balancers. I had some trouble finding documentation on the AWS PowerShell modules but in the end I was able to get everything done via scripts.

Here are some examples that might help you out.

If you are not using IAM roles then you will need to pass credentials to the AWS powershell module to use. This is how you accomplish that (using least privileged IAM credentials I hope).

Import-Module AWSPowerShell

Set-AWSCredentials -AccessKey AccessKeyGoesHere -SecretKey PasswordSecretKeyGoesHere
Set-DefaultAWSRegion us-east-1

Import-Module AWSPowerShell

Set-AWSCredentials -AccessKey AccessKeyGoesHere -SecretKey PasswordSecretKeyGoesHere

Set-DefaultAWSRegion us-east-1

Query for EC2 instances by name

$EC2Instance1 = Get-EC2Instance -Filter @{name='tag:Name'; values= "ServerName1"}
$EC2Instance2 = Get-EC2Instance -Filter @{name='tag:Name'; values= "ServerName2"}

1 2	$EC2Instance1 = Get-EC2Instance -Filter @{name='tag:Name'; values= "ServerName1"} $EC2Instance2 = Get-EC2Instance -Filter @{name='tag:Name'; values= "ServerName2"}

Power on an instance

$EC2Instance1.Instances | Start-EC2Instance

1	$EC2Instance1.Instances \| Start-EC2Instance

Convert your already queried instance objects into objects that can be used with Elastic Load Balancers…

$ELBInstance1 = New-Object Amazon.ElasticLoadBalancing.Model.Instance
$ELBInstance1.InstanceId = $EC2Instance1 .Instances.InstanceID
$ELBInstance2 = New-Object Amazon.ElasticLoadBalancing.Model.Instance
$ELBInstance2.InstanceId = $EC2Instance1 .Instances.InstanceID

$ELBInstance1 = New-Object Amazon.ElasticLoadBalancing.Model.Instance

$ELBInstance1.InstanceId = $EC2Instance1 .Instances.InstanceID

$ELBInstance2 = New-Object Amazon.ElasticLoadBalancing.Model.Instance

$ELBInstance2.InstanceId = $EC2Instance1 .Instances.InstanceID

Use your ELB Instance objects to add or remove them from ELBs

Remove-ELBInstanceFromLoadBalancer -LoadBalancerName "PutYourLoadBalancerNameHere" -Instances @($ELBInstance1) -Force

Register-ELBInstanceWithLoadBalancer -LoadBalancerName "PutYourLoadBalancerNameHere" -Instances @($ELBInstance1, $EC2Instance2)

Remove-ELBInstanceFromLoadBalancer -LoadBalancerName "PutYourLoadBalancerNameHere" -Instances @($ELBInstance1) -Force

Register-ELBInstanceWithLoadBalancer -LoadBalancerName "PutYourLoadBalancerNameHere" -Instances @($ELBInstance1, $EC2Instance2)

Enable Ping reply with PowerShell

Posted by Chris Allen on January 24, 2015 4 comments

Windows ships with ICMP reply disabled in the firewall. Here is a quick 2 liner in powershell to enable ping replys.

Import-Module NetSecurity
Set-NetFirewallRule -DisplayName "File and Printer Sharing (Echo Request - ICMPv4-In)" -enabled True

1 2	Import-Module NetSecurity Set-NetFirewallRule -DisplayName "File and Printer Sharing (Echo Request - ICMPv4-In)" -enabled True

Display and Save Wireless Mac Address with PowerShell

Posted by Chris Allen on January 24, 2015 No comments

A while back I was working at a place where the desktop techs needed to send the wireless MAC address to the network security team. So during the build I wrote this powershell script to save the MAC address to a text document on the desktop and to open it up.

This was done in conjunction with MDT while it wrapped up the task sequence logged in as the built-in administrator .

Get-WmiObject win32_networkadapterconfiguration |
Where-Object {$_.caption -like "*wireless*"} |
Select-Object -property Description,MacAddress |
Out-File $env:userprofile\desktop\mac.txt
Invoke-Item $env:userprofile\desktop\mac.txt

Get-WmiObject win32_networkadapterconfiguration |

Where-Object {$_.caption -like "*wireless*"} |

Select-Object -property Description,MacAddress |

Out-File $env:userprofile\desktop\mac.txt

Invoke-Item $env:userprofile\desktop\mac.txt

« Previous page

Packet Lost

Get-Content $TodaysThoughts | Out-Blog

Category Archives: PowerShell - Page 2

Check the date of a certificate from a polled URL with PowerShell

Delete ElasticSearch indexes with powershell

Cleanup IIS Logs AutoMagically

VMware Tools Check – PowerCLI Email Report

Virtual Machine Guest Disk Free Space – PowerCLI Email Report

Automating AWS with PowerShell

Enable Ping reply with PowerShell

Display and Save Wireless Mac Address with PowerShell

Categories

Recent Posts

Find Me

Get-Content $TodaysThoughts | Out-Blog

Category Archives: PowerShell - Page 2

Categories

Tags

Recent Posts

Find Me