Jump to content

Use Elevated CMD

Tumulus
 Share

Recommended Posts

Tumulus Seeker

Tumulus

Posted
Posted

I need to create a new administrator account on a number of computers, so figured I would make a script to do it. 

You can only add/modify admin profile from an elevated command prompt (administrator command prompt). So I tried writing that into my short script. I thought that my "RunAs" command below would do the trick, but it opens a standard cmd window through the admin profile.

Anyone able to tell me how to get it to open the elevated cmd? 

RunAs("administrator",@ComputerName,$sAdminPassword,0,@ComSpec)
    Sleep (500)

    Send("net user /ADD " & $sUsername & " " & $sPassword)
    Send("{ENTER}")

    Send("Y")
    Send("{ENTER}")

    Send("net user " & $sUsername & " /passwordchg:no")
    Send("{ENTER}")

    Send("net localGroup administrators " & $sUsername & " /ADD")
    Send("{ENTER}")

    WinClose("C:\Windows\system32\cmd.exe")

 

Link to comment
Share on other sites
  • Moderators
JLogan3o13 Universalist

JLogan3o13

Posted
  • Moderators
Posted

@Tumulus if you are doing this on a "number of computers", why are you not using Active Directory to automate it?

"Profanity is the last vestige of the feeble mind. For the man who cannot express himself forcibly through intellect must do so through shock and awe" - Spencer W. Kimball

How to get your question answered on this forum!

Link to comment
Share on other sites
Tumulus Seeker

Tumulus

Posted
  • Author
Posted

That is a really great question @JLogan3o13. I hadn't even thought to do that. A team lead asked if we could make a script to do it, but it would be much easier in active directory. I'll ask him about that today. 

Also, @AdamUL... That is great! Much easier process for local account management. I can avoid the cmd altogether with those commands right?

However, for the sake of learning, how do I get the cmd to open in an elevated box within an auto it script? We do a lot of scripting and many of our scripts need to operate with administrator permissions. Forgetting the rest of my code (if that is alright), why does this command open a standard cmd window instead of the administrator cmd prompt?  

RunAs("administrator",@ComputerName,$sAdminPassword,0,@ComSpec)

 

Link to comment
Share on other sites
AdamUL Universalist

AdamUL

Posted
Posted

That is correct, you do not need the command window at all.  Also, with the Local Account UDF, you can access remote computers, and setup local accounts.  Just have a look at the function headers.  Also, look in the thread, as other users have submitted other useful functions not included in the UDF.  

RunAs does not give the runas user the Admin Token.  You have to use a workaround to run as a full admin with the Admin Token as a different user.  Here is an example script that shows one way to do it.  The script is wrote to work uncompiled or compiled.  

 

 

Adam

Link to comment
Share on other sites
Tumulus Seeker

Tumulus

Posted
  • Author
Posted

I did the script with the UDF and it was awesome! nifty little scripting there (shout out to @engine for the great work).

The example to run an Admin prompt was really helpful too. I got it working on some other scripts. Thanks again!

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...