Burkard Josh – Josh's IT-Blog

read SCCM device / collection variables

28. May 2020 by Burkard Josh

when you use device or collection variables in SCCM, you can use it with this view PowerShell lines inside a task sequence script:

# Create an object to access the task sequence environment
$tsenv = New-Object -ComObject Microsoft.SMS.TSEnvironment

# Query the environment to get an existing variable
# Set a variable for the task sequence log path
$LogPath = $tsenv.Value("_SMSTSLogPath")

# Or, convert all of the variables currently in the environment to PowerShell variables
$tsenv.GetVariables() | % { Set-Variable -Name "$_" -Value "$($tsenv.Value($_))" }

# Create an object to access the task sequence environment

$tsenv = New-Object -ComObject Microsoft.SMS.TSEnvironment

# Query the environment to get an existing variable

# Set a variable for the task sequence log path

$LogPath = $tsenv.Value("_SMSTSLogPath")

# Or, convert all of the variables currently in the environment to PowerShell variables

$tsenv.GetVariables() | % { Set-Variable -Name "$_" -Value "$($tsenv.Value($_))" }

if you use the script above, you must start the PowerShell script through an SCCM Task Sequence.

if you want to read the collection / device variables from outside a Task Sequence, you can use this function Get-SCCMClientCollectionVariable. this function must be started in the context of NT Authority System, otherwise it can’t return the variables read more

remove sensitive files from GIT

7. May 2020 by Burkard Josh

sometimes you need to remove a file from GIT. when it contains sensitive datas like passwords, it needs to be removed from the GIT history to:

this commands helped me to do this:

git filter-branch --force --index-filter "git rm --cached -f -r --ignore-unmatch Source/accounts.csv" --tag-name-filter cat -- --all
git push --force

1 2	git filter-branch --force --index-filter "git rm --cached -f -r --ignore-unmatch Source/accounts.csv" --tag-name-filter cat -- --all git push --force

Windows Azure Pack doesn’t show Automation dashboard after updating SMA

21. February 202020. February 2020 by Burkard Josh

this days, I updated Service Management Automation (SMA) in our production environment from version 2016 UR7 to version 2019.

after the update, I had an issue with Windows Azure Pack, which couldn’t display the dashboard for the Automation provider.

after some research, i found out, that the root cause was some months earlier. we have a lot of concurrent jobs running and some times the SMA workers was overloaded and all new jobs where hanging in the queue. the solution I found on some other websites, was to mark this queued jobs as failed inside the database and then restart the worker service:

USE SMA

-- New Jobs
UPDATE [Core].[Jobs] SET StatusID=5 WHERE StatusID=1

-- Running Jobs
UPDATE [Core].[Jobs] SET StatusID=5 WHERE StatusID=3

-- Suspended Jobs
UPDATE [Core].[Jobs] SET StatusID=5 WHERE StatusID=8

USE SMA

-- New Jobs

UPDATE [Core].[Jobs] SET StatusID=5 WHERE StatusID=1

-- Running Jobs

UPDATE [Core].[Jobs] SET StatusID=5 WHERE StatusID=3

-- Suspended Jobs

UPDATE [Core].[Jobs] SET StatusID=5 WHERE StatusID=8

after setting this jobs to failed state, I had to configure the Runbook worker to start only one Runbook per Sandbox process in the file C:\Program Files\Microsoft System Center\Service Management Automation\Orchestrator.Settings.config:

<add key="MaxRunningJobs" value="1"/>
<add key="TotalAllowedJobs" value="1"/>

1 2	<add key="MaxRunningJobs" value="1"/> <add key="TotalAllowedJobs" value="1"/>

the Runbook worker could now be restarted and was working properly again. Stability was much better, than before. read more

getting Security Scopes of SCCM folder

7. February 2020 by Burkard Josh

since version 1906 SCCM supports role-based access control (RBAC) for folders. This can be configured trough the SCCM console or (recommended) PowerShell.

unfortunattely the current version of the commandlet Get-CMObjectSecurityScope doesn’t support any folder as InputObject. so, if you want to know, which Security Scope is allowed to see a folder, you have to use this:

$PathName = 'LAB:\DeviceCollection\FolderName\SubFolder' 
$Folder = Get-Item $PathName 
Get-WmiObject -ComputerName $SiteServer -Namespace "root\sms\site_$( $SiteCode )" -Query "SELECT * FROM SMS_SecuredCategoryMembership WHERE ObjectKey = '$( $Folder.ContainerNodeID )'" | ForEach-Object { Get-CMSecurityScope -Id $_.CategoryID }

$PathName = 'LAB:\DeviceCollection\FolderName\SubFolder'

$Folder = Get-Item $PathName

Get-WmiObject -ComputerName $SiteServer -Namespace "root\sms\site_$( $SiteCode )" -Query "SELECT * FROM SMS_SecuredCategoryMembership WHERE ObjectKey = '$( $Folder.ContainerNodeID )'" | ForEach-Object { Get-CMSecurityScope -Id $_.CategoryID }

to add or remove any SecurityScopes to a Folder, you can use this build-in commandlets:

Add-CMObjectSecurityScope -InputObject $Folder -Name $SecurityScopeName
Remove-CMObjectSecurityScope -InputObject $Folder -Name $SecurityScopeName

1 2	Add-CMObjectSecurityScope -InputObject $Folder -Name $SecurityScopeName Remove-CMObjectSecurityScope -InputObject $Folder -Name $SecurityScopeName

Pester tests for PowerShell modules

21. August 201919. August 2019 by Burkard Josh

if you write regularly PowerShell modules, you have to test the functions in it.

i wrote some Pester tests, which are doing this tests for all functions in a PowerShell module:

the function has SYNOPSIS, DESCRIPTION and EXAMPLES

the function has cmdletbinding

the function has an OutputType defined

the function name starts with an approved verb

the function name has an common prefix

all parameters have a help text

all parameters have a type declaration

all variables inside the function has the same upper/lower case

pass parameter values to Invoke-CMScript

30. July 201930. July 2019 by Burkard Josh

The Invoke-CMScript cmdlet invokes a PowerShell script in Microsoft System Center Configuration Manager. System Center Configuration Manager has an integrated ability to run Powershell scripts. The scripts simplify building custom tools to administer software and let you accomplish mundane tasks quickly, allowing you to get large jobs done more easily and more consistently. For more information, see Create and run PowerShell scripts from the Configuration Manager console.

unfortunately the Invoke-CMScript doesn’t allow to pass values to defined script params. if you want to do this, you have to invoke the script through the Configuration Manager console. read more

PowerShell and PSHTML in Azure Function App

10. June 201910. June 2019 by Burkard Josh

PowerShell is now available in Azure Function App (still in preview).

you can create a Powershell Function App like this:

using PowerShell modules

currently, you can’t install a powershell module inside Azure Function App, but you can upload your module to the script directory and access it from there. to do this, use Kudu:

browse to site / wwwroot:

then you can drag and drop your module ZIP-file to the right part of the explorer

the file will be uploaded and unpacked automatically

now you can reference this module directly from your function script read more

getting info about users password expiration

14. November 201814. November 2018 by Burkard Josh

i work in a multi domain environment. each domain has different password expiration rules. unfortunattely there is no notification system for the password expiration, so i have to check manually how long my passwords are valid.

for this, i wrote this PowerShell function, which does work without the use of any additional module:

function get-UserPwdInfo {
    Param (
        $UserDN
    )
    $ACCOUNTDISABLE       = 0x000002
    $DONT_EXPIRE_PASSWORD = 0x010000
    $PASSWORD_EXPIRED     = 0x800000

    if ( [string]::IsNullOrEmpty( $UserDN ) ) {
        $SysInfo = New-Object -ComObject "ADSystemInfo"
        $UserDN = $SysInfo.GetType().InvokeMember("UserName", "GetProperty", $Null, $SysInfo, $Null)
    }

    $User = [ADSI]"LDAP://$UserDN"
    
    $searcher=New-Object DirectoryServices.DirectorySearcher
    $searcher.Filter="(&(distinguishedName=$($User.distinguishedName)))"
    $results=$searcher.findone()
    $PwdLastSet = [datetime]::fromfiletime($results.properties.pwdlastset[0])
    
    $DomainName = ( $UserDN -split ',' | Where-Object { $_ -match 'DC' } | ForEach-Object { $_ -replace 'DC=', '' } ) -join '.'
    [ADSI]$domain = "WinNT://$( $DomainName )"

    $MaxPasswordAge = $domain.MaxPasswordAge.Value

    New-Object -TypeName PSObject -Property @{
        Domain                = $domain.Name.ToString()
        UserDisplayName       = $results.Properties.displayname[0].ToString()
        UserDistinguishedName = $results.Properties.distinguishedname[0].ToString()
        userPrincipalName     = $User.userPrincipalName.ToString()
        sAMAccountName        = $user.sAMAccountName.ToString()
        Enabled               = ( -not [bool]($results.Properties.useraccountcontrol[0] -band $ACCOUNTDISABLE ) )
        PasswordNeverExpires  = ( [bool]($results.Properties.useraccountcontrol[0] -band $DONT_EXPIRE_PASSWORD ) )
        PasswordExpired       = ( [bool]($results.Properties.useraccountcontrol[0] -band $PASSWORD_EXPIRED ) )
        MaxPasswordAge        = $domain.MaxPasswordAge.Value / 3600 / 24 
        MinPasswordAge        = $domain.MinPasswordAge.Value / 3600 / 24 
        LastPasswordSet       = $PwdLastSet 
        CurrentPasswordAge    = ( New-TimeSpan -Start $PwdLastSet -End ( Get-Date ) )
        PasswordExpiresOn     = $PwdLastSet.AddSeconds( $MaxPasswordAge )
        PasswordExpiresIn     = ( New-TimeSpan -Start ( Get-Date ) -End $PwdLastSet.AddSeconds( $MaxPasswordAge ) )
    } | Select-Object Domain, UserDisplayName, UserDistinguishedName, userPrincipalName, sAMAccountName, Enabled, PasswordNeverExpires, PasswordExpired, MaxPasswordAge, MinPasswordAge, LastPasswordSet, CurrentPasswordAge, PasswordExpiresOn, PasswordExpiresIn
}
$UserPwdInfo = get-UserPwdInfo 
$UserPwdInfo

function get-UserPwdInfo {

Param (

$UserDN

)

$ACCOUNTDISABLE = 0x000002

$DONT_EXPIRE_PASSWORD = 0x010000

$PASSWORD_EXPIRED = 0x800000

if ( [string]::IsNullOrEmpty( $UserDN ) ) {

$SysInfo = New-Object -ComObject "ADSystemInfo"

$UserDN = $SysInfo.GetType().InvokeMember("UserName", "GetProperty", $Null, $SysInfo, $Null)

}

$User = [ADSI]"LDAP://$UserDN"

$searcher=New-Object DirectoryServices.DirectorySearcher

$searcher.Filter="(&(distinguishedName=$($User.distinguishedName)))"

$results=$searcher.findone()

$PwdLastSet = [datetime]::fromfiletime($results.properties.pwdlastset[0])

$DomainName = ( $UserDN -split ',' | Where-Object { $_ -match 'DC' } | ForEach-Object { $_ -replace 'DC=', '' } ) -join '.'

[ADSI]$domain = "WinNT://$( $DomainName )"

$MaxPasswordAge = $domain.MaxPasswordAge.Value

New-Object -TypeName PSObject -Property @{

Domain = $domain.Name.ToString()

UserDisplayName = $results.Properties.displayname[0].ToString()

UserDistinguishedName = $results.Properties.distinguishedname[0].ToString()

userPrincipalName = $User.userPrincipalName.ToString()

sAMAccountName = $user.sAMAccountName.ToString()

Enabled = ( -not [bool]($results.Properties.useraccountcontrol[0] -band $ACCOUNTDISABLE ) )

PasswordNeverExpires = ( [bool]($results.Properties.useraccountcontrol[0] -band $DONT_EXPIRE_PASSWORD ) )

PasswordExpired = ( [bool]($results.Properties.useraccountcontrol[0] -band $PASSWORD_EXPIRED ) )

MaxPasswordAge = $domain.MaxPasswordAge.Value / 3600 / 24

MinPasswordAge = $domain.MinPasswordAge.Value / 3600 / 24

LastPasswordSet = $PwdLastSet

CurrentPasswordAge = ( New-TimeSpan -Start $PwdLastSet -End ( Get-Date ) )

PasswordExpiresOn = $PwdLastSet.AddSeconds( $MaxPasswordAge )

PasswordExpiresIn = ( New-TimeSpan -Start ( Get-Date ) -End $PwdLastSet.AddSeconds( $MaxPasswordAge ) )

} | Select-Object Domain, UserDisplayName, UserDistinguishedName, userPrincipalName, sAMAccountName, Enabled, PasswordNeverExpires, PasswordExpired, MaxPasswordAge, MinPasswordAge, LastPasswordSet, CurrentPasswordAge, PasswordExpiresOn, PasswordExpiresIn

}

$UserPwdInfo = get-UserPwdInfo

$UserPwdInfo

the result of this script looks like this:

reclaime diskspace on zero detection storage when deletening vmware vm

22. October 2018 by Burkard Josh

some time ago, i had the problem that my 3Par storage was getting full. in this time i removed a lot of test vm’s from this storage, but nothing happens. the storage was still full. the reason was the mechanisme how vmware deletes files from a DataStore and the activated zero-detection feature on the storage. if you delete a virtual disk file on the vmware datastore, it will only marked as deleted, but the datas are still there in the same format. to get the storage’s zero detection work, we have to zero out the deleted part of the datastore manually.

you can do this with this script:

$vCenterName   = "vcenter.domain.fqdn"
$vCenterCreds  = New-Object System.Management.Automation.PSCredential ( "username", ( ConvertTo-SecureString "PlainTextPassword" -AsPlainText -Force ) )

& 'C:\Program Files (x86)\VMware\Infrastructure\vSphere PowerCLI\Scripts\Initialize-PowerCLIEnvironment.ps1'

Connect-VIServer -Server $vCenterName -Credential $vCenterCreds -WarningAction SilentlyContinue
Set-PowerCLIConfiguration -Scope Session -WebOperationTimeoutSeconds -1  -Confirm:$false

$VMHost = ( Get-VMHost )[0]
$EsxCli = Get-EsxCli -VMHost $VMHost.Name

$Datastores = $VMHost | Get-Datastore

foreach ( $Datastore in ( $Datastores | Sort-Object Name ) )
{
    Write-Output $Datastore.Name
    $res = $EsxCli.storage.vmfs.unmap(200, $Datastore.Name, $null)
    Write-Output "   $( $res )"
}

Disconnect-VIServer -confirm:$false

Get-Module | Remove-Module -Force

$vCenterName = "vcenter.domain.fqdn"

$vCenterCreds = New-Object System.Management.Automation.PSCredential ( "username", ( ConvertTo-SecureString "PlainTextPassword" -AsPlainText -Force ) )

& 'C:\Program Files (x86)\VMware\Infrastructure\vSphere PowerCLI\Scripts\Initialize-PowerCLIEnvironment.ps1'

Connect-VIServer -Server $vCenterName -Credential $vCenterCreds -WarningAction SilentlyContinue

Set-PowerCLIConfiguration -Scope Session -WebOperationTimeoutSeconds -1 -Confirm:$false

$VMHost = ( Get-VMHost )[0]

$EsxCli = Get-EsxCli -VMHost $VMHost.Name

$Datastores = $VMHost | Get-Datastore

foreach ( $Datastore in ( $Datastores | Sort-Object Name ) )

{

Write-Output $Datastore.Name

$res = $EsxCli.storage.vmfs.unmap(200, $Datastore.Name, $null)

Write-Output " $( $res )"

}

Disconnect-VIServer -confirm:$false

Get-Module | Remove-Module -Force

how to get the correct Virtual Disk for a VMware vm

8. March 20188. March 2017 by Burkard Josh

Some times I have the problem, I need to resize or delete a VMware virtual disk, but I only know the guest’s drive letter. In vm’s where there are only one virtual disk, or where each virtual disk has a different size, this isn’t a problem. but if you have a vm with multiple virtual disk with exactly the same size, you can’t compare it between the guest Disk Manager and the virtual disk sizes. if your vm has more than one SCSI controller, the problem will increase.

Windows Disk Manager	VMware VM settings

I searched long time to solve this problem, but I couldn’t find an easy solution for this. so I wrote this PowerShell script:

<#
.SYNOPSIS
    This script will return informations about virtual disks and windows disk allocation

.DESCRIPTION
    This script will return informations about virtual disks and windows disk allocation

.PARAMETER vCenterName
    defines the fqdn of the vCenter

.PARAMETER vmName
    defines the name of the vm (like naming in vCenter, not the fqdn / dns name)

.PARAMETER vmCred
    enter credentials to connect to the guest vm

.EXAMPLE
    $vmCred = New-Object System.Management.Automation.PSCredential ('domain\username', ( ConvertTo-SecureString 'YourSecretPassword' -AsPlainText -Force ) )
    .\ALL-OPR-get-VMDiskInfos.ps1 -vCenterName 'vcenter.domain.local' -vmName 'VMName' -vmcred $vmCred 

.NOTES
    -Author:		Josh Burkard
    -Email :		josh@burkard.it
    -CreationDate:	07.03.2018
    -LastModifiedDate: 
    -Version:		1.0.0.0
    -History:
        07.03.2018	1.0.0.0	Josh Burkard	InitalVersion

.LINK

#>
Param 
(
    # Parameter help description
    [Parameter(Mandatory=$true)][string]$vCenterName,
    [Parameter(Mandatory=$true)][string]$vmName,
    [System.Management.Automation.PSCredential][Parameter(Mandatory=$true)]$vmCred
)

#region Decalarations
#endregion Decalarations

#region Functions
#endregion Functions

#region Execution
    #region verify Params
        if ( [string]::IsNullOrEmpty( $vCenterName ) )
        {
            Write-Host  "parameter vCenterName was  not definied" -ForegroundColor Red
        } elseif ( [string]::IsNullOrEmpty( $vmName ) )
        {
            Write-Host  "parameter vmName was  not definied" -ForegroundColor Red
        } elseif ( [string]::IsNullOrEmpty( $vmCred ) )
        {
            $vmCred = Get-Credential
        } else {
            Write-Verbose "all needed parameters set"
        }
    #endregion verify Params


    #region load VMware Snapins
        Write-Verbose "load VMware Snappins"
        foreach ($comp in "VMware.VimAutomation.Core", "VMware.ImageBuilder") {
            if (Get-Module -ListAvailable -Name $comp -ErrorAction:SilentlyContinue) {
                if (!(Get-Module -Name $comp -ErrorAction:SilentlyContinue)) {
                    if (!(Import-Module -PassThru -Name $comp -ErrorAction:SilentlyContinue)) {
                        Write-Host "FATAL ERROR: Failed to import the $comp module!" -ForegroundColor Red
                        # Exit
                    }
                }
            } else {
                if (Get-PSSnapin -Registered -Name $comp -ErrorAction:SilentlyContinue) {
                    if (!(Get-PSSnapin -Name $comp -ErrorAction:SilentlyContinue)) {
                        if (!(Add-PSSnapin -PassThru -Name $comp -ErrorAction:SilentlyContinue)) {
                            Write-Host "FATAL ERROR: Failed to add the $comp snapin!" -ForegroundColor Red
                            # Exit
                        }
                    }
                } else {
                    Write-Host "FATAL ERROR: $comp is not available as a module or snapin! It looks like there is no compatible version of PowerCLI installed!" -ForegroundColor Red
                    # Exit
                }
            }
        }
    #endregion load VMware Snapins

    #region connect to vCenter
        Write-Verbose "connecting to vCenter $vCenterName"
        try 
        {
            Connect-VIServer -Server $vCenterName -WarningAction SilentlyContinue | Out-Null
            Write-Verbose "connected to vCenter $vCenterName"
        } catch {
            $ErrorMessage = $_.Exception.Message
            # $FailedItem = $_.Exception.ItemName
            Write-Host "couldn't connect to vCenter '$vCenter'" -ForegroundColor Red
            Write-Host $ErrorMessage -ForegroundColor Red
            # Exit
        }
    #endregion connect to vCenter
    
    #region get VM
        $vm = Get-VM -Name $vmName
        if ( [string]::IsNullOrEmpty( $vm ) )
        {
            Write-Host  "VM not found" -ForegroundColor Red
            # exit
        } else {
            Write-Verbose "vm $vmName found" 
        }
    #endregion get VM
    
    #region get VM View for SCSI Controller
        $vmview = Get-View -ViewType VirtualMachine -Filter @{"Name" = $vmName}
        if ( !( [string]::IsNullOrEmpty( $vmview ) ) )
        {
            Write-Verbose "vmView $vmName found" 
            $vmDisks = @()
            $VirtualSCSIControllers = $vmview.Config.Hardware.Device | Where-Object {$_.DeviceInfo.Label -match "SCSI"}
            $VirtualSCSIController = $VirtualSCSIControllers[0]
            foreach ($VirtualSCSIController in $VirtualSCSIControllers ) 
            {
                $VirtualDiskDevices = $vmview.Config.Hardware.Device | Where-Object { $_.ControllerKey -eq $VirtualSCSIController.Key }
                foreach ($VirtualDiskDevice in $VirtualDiskDevices ) 
                {
                    $vmDisks += New-Object -TypeName PSObject -Property @{
                        VirtualDeviceNode    = "SCSI ($( $VirtualSCSIController.BusNumber ):$( $VirtualDiskDevice.UnitNumber )) $( $VirtualDiskDevice.DeviceInfo.Label )"
                        PciSlotNumber        = $VirtualSCSIController.SlotInfo.PciSlotNumber
                        DataStore            = $VirtualDiskDevice.Backing.DataStore
                        FileName             = $VirtualDiskDevice.Backing.FileName
                        ControllerKey        = $VirtualSCSIController.Key
                        DiskKey              = $VirtualDiskDevice.Key
                        ControllerBus        = $VirtualSCSIController.BusNumber
                        ControllerUnitNumber = $VirtualSCSIController.UnitNumber
                        DiskUnitNumber       = $VirtualDiskDevice.UnitNumber
                    }
                }
            }
        } else {
            Write-Host  "VMView not found" -ForegroundColor Red
            # exit
        }
    #endregion get VM View for SCSI Controller
    
    #region get Disk and volumes from guest system
        $scripttext = @"
[Int64]$('$')HKLM = "2147483650"
[String]$('$')value = "UINumber"
$('$')Reg_Query = Get-WmiObject -List "StdRegProv" -Namespace root\cimv2 
$('$')PhysicalDisks = Get-WmiObject -Class "Win32_DiskDrive" -Namespace "root\CIMV2"    
# $('$')PhysicalDisks
$('$')DiskDrives = Get-WmiObject Win32_DiskDrive
$('$')DiskInfos = Get-WmiObject Win32_DiskDrive | ForEach-Object {
    $('$')DiskDrive = $('$')_
    $('$')PNPDeviceID = $('$')DiskDrive.PNPDeviceID.split('\')
    $('$')key = "SYSTEM\CurrentControlSet\Enum\$('$')($('$')PNPDeviceID[0])\$('$')($('$')PNPDeviceID[1])\$('$')($('$')PNPDeviceID[2])"
    $('$')PciSlotNumber = ($('$')Reg_Query.GetDWORDValue($('$')HKLM,$('$')key,$('$')value)).uvalue

    $('$')UniqueId = ( ( $('$')PhysicalDisks | Where-Object { $('$')DiskDrive.DeviceID -eq "\\.\PHYSICALDRIVE$('$')( $('$')_.DeviceId )" } ).UniqueId )
    If ( [string]::IsNullOrEmpty( $('$')UniqueId ) )
    {
        $('$')UniqueId = ( $('$')PhysicalDisks | Where-Object { $('$')DiskDrive.DeviceID -eq $('$')_.Name } ).SerialNumber
    }
    $('$')DiskDriveToDiskPartitions = Get-WmiObject -Query "ASSOCIATORS OF {Win32_DiskDrive.DeviceID='$('$')($('$')DiskDrive.DeviceID)'} WHERE AssocClass = Win32_DiskDriveToDiskPartition"
    $('$')DiskDriveToDiskPartitions | ForEach-Object {
        $('$')partition = $('$')_
        
        $('$')LogicalDiskToPartitions = Get-WmiObject -Query "ASSOCIATORS OF {Win32_DiskPartition.DeviceID='$('$')($('$')partition.DeviceID)'} WHERE AssocClass = Win32_LogicalDiskToPartition" 
        $('$')LogicalDiskToPartitions | ForEach-Object {
            New-Object -Type PSCustomObject -Property @{
                DiskSize        = $('$')DiskDrive.Size
                DiskModel       = $('$')DiskDrive.Model
                SCSIBus         = $('$')DiskDrive.SCSIBus
                SCSILogicalUnit = $('$')DiskDrive.SCSILogicalUnit
                SCSIPort        = $('$')DiskDrive.SCSIPort
                SCSITargetId    = $('$')DiskDrive.SCSITargetId
                PNPDeviceID     = $('$')DiskDrive.PNPDeviceID
                PciSlotNumber   = $('$')PciSlotNumber
                UniqueId        = $('$')UniqueId
                Partition       = $('$')partition.Name
                RawSize         = $('$')partition.Size
                DiskID          = $('$')partition.DiskIndex
                StartingOffset  = $('$')partition.StartingOffset
                DriveLetter     = $('$')_.DeviceID
                VolumeName      = $('$')_.VolumeName
                Size            = $('$')_.Size
                FreeSpace       = $('$')_.FreeSpace
            }
        }
    }
}
$('$')DiskInfos = $('$')DiskInfos | Where-Object { ( ! ( [string]::IsNullOrEmpty( $('$')_.UniqueId ) ) ) }
# $('$')DiskInfos | Sort-Object DriveLetter, DiskID | Select-Object -Unique UniqueId, DiskID, DriveLetter, SCSIBus, SCSILogicalUnit, SCSIPort, SCSITargetId, PNPDeviceID, PciSlotNumber | Format-Table
$('$')DiskInfos | convertTo-CSV
"@
        try {
            $WinDisks = Invoke-VMScript -VM $vm -ScriptText $scripttext -GuestCredential $vmCred -ErrorAction stop | convertfrom-csv    
        }
        catch {
            $ErrorMessage = $_.Exception.Message
            # $FailedItem = $_.Exception.ItemName
            Write-Host "couldn't connect to VM guest" -ForegroundColor Red
            Write-Host $ErrorMessage -ForegroundColor Red
            exit
        }
        
    #endregion get Disk and volumes from guest system
    
    #region merge WinDisk and VMware Disk Infos
        $DiskInfos = @()
        # $WinDisk = $WinDisks[1] 
        foreach ( $WinDisk in $WinDisks )
        {
            $vmDisk = $vmDisks | Where-Object { $_.PciSlotNumber -eq $WinDisk.PciSlotNumber -and $_.DiskUnitNumber -eq $WinDisk.SCSITargetId }
            $DiskInfos += New-Object -TypeName PSOBject -Property @{
                WinDiskID              = $WinDisk.DiskID
                PCISlotNumber          = $WinDisk.PciSlotNumber
                WinVolumeName          = $WinDisk.VolumeName
                WinDiskSCSITargetId    = $WinDisk.SCSITargetId
                DriveLetter            = $WinDisk.DriveLetter
                VMControllerBusNumber  = $vmDisk.ControllerBus
                VirtualDeviceNode      = $vmDisk.VirtualDeviceNode
                FileName               = $vmDisk.FileName
                DataStore              = $vmDisk.DataStore
            }
        }
        $DiskInfos 
    #endregion merge WinDisk and VMware Disk Infos
#endregion Execution

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

.SYNOPSIS

This script will return informations about virtual disks and windows disk allocation

.DESCRIPTION

This script will return informations about virtual disks and windows disk allocation

.PARAMETER vCenterName

defines the fqdn of the vCenter

.PARAMETER vmName

defines the name of the vm (like naming in vCenter, not the fqdn / dns name)

.PARAMETER vmCred

enter credentials to connect to the guest vm

.EXAMPLE

$vmCred = New-Object System.Management.Automation.PSCredential ('domain\username', ( ConvertTo-SecureString 'YourSecretPassword' -AsPlainText -Force ) )

.\ALL-OPR-get-VMDiskInfos.ps1 -vCenterName 'vcenter.domain.local' -vmName 'VMName' -vmcred $vmCred

.NOTES

-Author: Josh Burkard

-Email : josh@burkard.it

-CreationDate: 07.03.2018

-LastModifiedDate:

-Version: 1.0.0.0

-History:

07.03.2018 1.0.0.0 Josh Burkard InitalVersion

.LINK

Param

(

# Parameter help description

[Parameter(Mandatory=$true)][string]$vCenterName,

[Parameter(Mandatory=$true)][string]$vmName,

[System.Management.Automation.PSCredential][Parameter(Mandatory=$true)]$vmCred

)

#region Decalarations

#endregion Decalarations

#region Functions

#endregion Functions

#region Execution

#region verify Params

if ( [string]::IsNullOrEmpty( $vCenterName ) )

{

Write-Host "parameter vCenterName was not definied" -ForegroundColor Red

} elseif ( [string]::IsNullOrEmpty( $vmName ) )

{

Write-Host "parameter vmName was not definied" -ForegroundColor Red

} elseif ( [string]::IsNullOrEmpty( $vmCred ) )

{

$vmCred = Get-Credential

} else {

Write-Verbose "all needed parameters set"

}

#endregion verify Params

#region load VMware Snapins

Write-Verbose "load VMware Snappins"

foreach ($comp in "VMware.VimAutomation.Core", "VMware.ImageBuilder") {

if (Get-Module -ListAvailable -Name $comp -ErrorAction:SilentlyContinue) {

if (!(Get-Module -Name $comp -ErrorAction:SilentlyContinue)) {

if (!(Import-Module -PassThru -Name $comp -ErrorAction:SilentlyContinue)) {

Write-Host "FATAL ERROR: Failed to import the $comp module!" -ForegroundColor Red

# Exit

}

} else {

if (Get-PSSnapin -Registered -Name $comp -ErrorAction:SilentlyContinue) {

if (!(Get-PSSnapin -Name $comp -ErrorAction:SilentlyContinue)) {

if (!(Add-PSSnapin -PassThru -Name $comp -ErrorAction:SilentlyContinue)) {

Write-Host "FATAL ERROR: Failed to add the $comp snapin!" -ForegroundColor Red

# Exit

}

} else {

Write-Host "FATAL ERROR: $comp is not available as a module or snapin! It looks like there is no compatible version of PowerCLI installed!" -ForegroundColor Red

# Exit

}

#endregion load VMware Snapins

#region connect to vCenter

Write-Verbose "connecting to vCenter $vCenterName"

try

{

Connect-VIServer -Server $vCenterName -WarningAction SilentlyContinue | Out-Null

Write-Verbose "connected to vCenter $vCenterName"

} catch {

$ErrorMessage = $_.Exception.Message

# $FailedItem = $_.Exception.ItemName

Write-Host "couldn't connect to vCenter '$vCenter'" -ForegroundColor Red

Write-Host $ErrorMessage -ForegroundColor Red

# Exit

}

#endregion connect to vCenter

#region get VM

$vm = Get-VM -Name $vmName

if ( [string]::IsNullOrEmpty( $vm ) )

{

Write-Host "VM not found" -ForegroundColor Red

# exit

} else {

Write-Verbose "vm $vmName found"

}

#endregion get VM

#region get VM View for SCSI Controller

$vmview = Get-View -ViewType VirtualMachine -Filter @{"Name" = $vmName}

if ( !( [string]::IsNullOrEmpty( $vmview ) ) )

{

Write-Verbose "vmView $vmName found"

$vmDisks = @()

$VirtualSCSIControllers = $vmview.Config.Hardware.Device | Where-Object {$_.DeviceInfo.Label -match "SCSI"}

$VirtualSCSIController = $VirtualSCSIControllers[0]

foreach ($VirtualSCSIController in $VirtualSCSIControllers )

{

$VirtualDiskDevices = $vmview.Config.Hardware.Device | Where-Object { $_.ControllerKey -eq $VirtualSCSIController.Key }

foreach ($VirtualDiskDevice in $VirtualDiskDevices )

{

$vmDisks += New-Object -TypeName PSObject -Property @{

VirtualDeviceNode = "SCSI ($( $VirtualSCSIController.BusNumber ):$( $VirtualDiskDevice.UnitNumber )) $( $VirtualDiskDevice.DeviceInfo.Label )"

PciSlotNumber = $VirtualSCSIController.SlotInfo.PciSlotNumber

DataStore = $VirtualDiskDevice.Backing.DataStore

FileName = $VirtualDiskDevice.Backing.FileName

ControllerKey = $VirtualSCSIController.Key

DiskKey = $VirtualDiskDevice.Key

ControllerBus = $VirtualSCSIController.BusNumber

ControllerUnitNumber = $VirtualSCSIController.UnitNumber

DiskUnitNumber = $VirtualDiskDevice.UnitNumber

}

} else {

Write-Host "VMView not found" -ForegroundColor Red

# exit

}

#endregion get VM View for SCSI Controller

#region get Disk and volumes from guest system

$scripttext = @"

[Int64]$('$')HKLM = "2147483650"

[String]$('$')value = "UINumber"

$('$')Reg_Query = Get-WmiObject -List "StdRegProv" -Namespace root\cimv2

$('$')PhysicalDisks = Get-WmiObject -Class "Win32_DiskDrive" -Namespace "root\CIMV2"

# $('$')PhysicalDisks

$('$')DiskDrives = Get-WmiObject Win32_DiskDrive

$('$')DiskInfos = Get-WmiObject Win32_DiskDrive | ForEach-Object {

$('$')DiskDrive = $('$')_

$('$')PNPDeviceID = $('$')DiskDrive.PNPDeviceID.split('\')

$('$')key = "SYSTEM\CurrentControlSet\Enum\$('$')($('$')PNPDeviceID[0])\$('$')($('$')PNPDeviceID[1])\$('$')($('$')PNPDeviceID[2])"

$('$')PciSlotNumber = ($('$')Reg_Query.GetDWORDValue($('$')HKLM,$('$')key,$('$')value)).uvalue

$('$')UniqueId = ( ( $('$')PhysicalDisks | Where-Object { $('$')DiskDrive.DeviceID -eq "\\.\PHYSICALDRIVE$('$')( $('$')_.DeviceId )" } ).UniqueId )

If ( [string]::IsNullOrEmpty( $('$')UniqueId ) )

{

$('$')UniqueId = ( $('$')PhysicalDisks | Where-Object { $('$')DiskDrive.DeviceID -eq $('$')_.Name } ).SerialNumber

}

$('$')DiskDriveToDiskPartitions = Get-WmiObject -Query "ASSOCIATORS OF {Win32_DiskDrive.DeviceID='$('$')($('$')DiskDrive.DeviceID)'} WHERE AssocClass = Win32_DiskDriveToDiskPartition"

$('$')DiskDriveToDiskPartitions | ForEach-Object {

$('$')partition = $('$')_

$('$')LogicalDiskToPartitions = Get-WmiObject -Query "ASSOCIATORS OF {Win32_DiskPartition.DeviceID='$('$')($('$')partition.DeviceID)'} WHERE AssocClass = Win32_LogicalDiskToPartition"

$('$')LogicalDiskToPartitions | ForEach-Object {

New-Object -Type PSCustomObject -Property @{

DiskSize = $('$')DiskDrive.Size

DiskModel = $('$')DiskDrive.Model

SCSIBus = $('$')DiskDrive.SCSIBus

SCSILogicalUnit = $('$')DiskDrive.SCSILogicalUnit

SCSIPort = $('$')DiskDrive.SCSIPort

SCSITargetId = $('$')DiskDrive.SCSITargetId

PNPDeviceID = $('$')DiskDrive.PNPDeviceID

PciSlotNumber = $('$')PciSlotNumber

UniqueId = $('$')UniqueId

Partition = $('$')partition.Name

RawSize = $('$')partition.Size

DiskID = $('$')partition.DiskIndex

StartingOffset = $('$')partition.StartingOffset

DriveLetter = $('$')_.DeviceID

VolumeName = $('$')_.VolumeName

Size = $('$')_.Size

FreeSpace = $('$')_.FreeSpace

}

$('$')DiskInfos = $('$')DiskInfos | Where-Object { ( ! ( [string]::IsNullOrEmpty( $('$')_.UniqueId ) ) ) }

# $('$')DiskInfos | Sort-Object DriveLetter, DiskID | Select-Object -Unique UniqueId, DiskID, DriveLetter, SCSIBus, SCSILogicalUnit, SCSIPort, SCSITargetId, PNPDeviceID, PciSlotNumber | Format-Table

$('$')DiskInfos | convertTo-CSV

try {

$WinDisks = Invoke-VMScript -VM $vm -ScriptText $scripttext -GuestCredential $vmCred -ErrorAction stop | convertfrom-csv

}

catch {

$ErrorMessage = $_.Exception.Message

# $FailedItem = $_.Exception.ItemName

Write-Host "couldn't connect to VM guest" -ForegroundColor Red

Write-Host $ErrorMessage -ForegroundColor Red

exit

}

#endregion get Disk and volumes from guest system

#region merge WinDisk and VMware Disk Infos

$DiskInfos = @()

# $WinDisk = $WinDisks[1]

foreach ( $WinDisk in $WinDisks )

{

$vmDisk = $vmDisks | Where-Object { $_.PciSlotNumber -eq $WinDisk.PciSlotNumber -and $_.DiskUnitNumber -eq $WinDisk.SCSITargetId }

$DiskInfos += New-Object -TypeName PSOBject -Property @{

WinDiskID = $WinDisk.DiskID

PCISlotNumber = $WinDisk.PciSlotNumber

WinVolumeName = $WinDisk.VolumeName

WinDiskSCSITargetId = $WinDisk.SCSITargetId

DriveLetter = $WinDisk.DriveLetter

VMControllerBusNumber = $vmDisk.ControllerBus

VirtualDeviceNode = $vmDisk.VirtualDeviceNode

FileName = $vmDisk.FileName

DataStore = $vmDisk.DataStore

}

$DiskInfos

#endregion merge WinDisk and VMware Disk Infos

#endregion Execution

when you run the script, it will ask you for credentials and then shows you the informations about booth of your virtual disk and Windows drive :

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

using PowerShell modules

Share this:

Share this:

Share this:

Share this: