Friday, 7 August 2009

script to create users - home folders and ntfs permissions

Complete script to create users, home folders and ntfs permissions

Assuming that you have a file users.txt with this format:

Last_name First_name Group Password

This script automatically create groups in the specified ou Sales, add users to this ou and to the respective groups, give users specified passwords, assign a logon script, create and share home folders and give ntfs permissions on them....a lot of work isn't it?

I must say that the script uses the rmtshare tool for setting shares, available for download from Microsoft.

 

@setlocal

@set ou=OU=Sales,DC=test,DC=com

@set domain=test.com

@set domainadmins=CN=Domain Admins,CN=Users,DC=test,DC=com

@set domainusers=CN=Domain Users,CN=Users,DC=test,DC=com

@rem Creation of groups

for /f "tokens=1,2* delims= " %%a in (users.txt) do dsadd group "CN=%%c, %ou%"

@rem Creation of users

for /f "tokens=1,2* delims= " %%a in (users.txt) do dsadd user "CN=%%b %%a, %ou%" -upn "%%b %%a" -fn %%b -ln %%a -display "%%b %%a" -loscr Scripts\logon.bat -pwd %%d -memberof "CN=%%c, %ou%"

@rem Creation of personal folders (home folders)

for /f "tokens=1,2* delims= " %%a in (users.txt) do md "D:\Homes\%%b %%a"

@rem Make shares on home directories

for /f "tokens=1,2* delims= " %%a in (users.txt) do rmtshare \\%COMPUTERNAME%\"%%b %%a$" = "D:\Homes\%%b %%a"

@rem Grant share rights on home folders

for /f "tokens=1,2* delims= " %%a in (users.txt) do rmtshare \\%COMPUTERNAME%\"%%b %%a$" /grant "%domain%\%%b %%a":CHANGE /grant "%domain%\Domain Admins":"FULL CONTROL"

@rem Give NTFS rights on home folders

for /f "tokens=1,2* delims= " %%a in (users.txt) do cacls "D:\Homes\%%b %%a" /T /C /G "%domain%\%%b %%a":C "%domain%\Domain Admins":F

 

 

 

No comments: