January 29, 2012 – flaphead.com

#Exchange #Exchange2010 #Powershell

So I have been meaning to post this for a while, so here it is. I have a need to dump out the RBAC permissions for Exchange 2010 so I could see who had what. So here is is. The output is a HTML file. You will need to create a folder called C:ps for it save it to.

Enjoy .. feedback welcome Winking smile

$Error.Clear()
#########################################################################################
$AppName = "Dump-RBAC.ps1"
$AppVer = "v1.0 [4th Feburary 20111]"
#
#v1.0 05 Aug 2011 : A Script is born

#This script exports relevant RBAC information and generate a webpage
##########################################################################################

##########################################################################################
#Load the Exchange 2010 bits & bobs
#########################################################################################
$xPsCheck = Get-PSSnapin | Select Name | Where {$_.Name -Like "*Exchange*"}
If ($xPsCheck -eq $Null) {Add-PsSnapin Microsoft.Exchange.Management.PowerShell.e2010}

##########################################################################################
#Display script name and version
#########################################################################################
Write-host " " $AppName -NoNewLine -foregroundcolor Green
Write-Host ": " $AppVer -foregroundcolor Green
Write-host "`n Run on $ServerName at $Today by $xUser" -foregroundcolor Yellow
Write-Host "|——————————————————————-|`n"
Write-host "Log Folder: $DateFolder"

$RBACArray = @()
$RBACCmd = @()
$RoleGroupArray = @()

$tmpCols = Get-ManagementRoleAssignment
$tmpCols | group RoleAssigneeName | sort name | Select Name | ForEach{$feName = $_.Name; $feName = $feName.Replace(" ","");$xHTML += "<td>" + $fename + "</td>"}

$x=@();$x+="RoleName"; $tmpCols | group RoleAssigneeName | sort name | Select Name | ForEach{$feName = $_.Name; $feName = $feName.Replace(" ","");$x += $fename}

$tmpgmr = Get-ManagementRole | Sort Name
Write-Host "Getting Management Role Information"
ForEach($tmpRole in $tmpgmr){
$tmpName = $tmpRole.Name
Write-Host $tmpName
$tmpArray = "" | Select $x
$tmpCmd = "" | Select RoleName, Commands

($tmpRole).RoleEntries | ForEach {$tmpcmd.Commands += $_.Name + " | "}

$tmparray.RoleName = $tmpName #$_.Role
$tmpCmd.RoleName = $tmpName

$gmra = $tmpCols | where {$_.Role -eq "$TmpName"}
$gmra | sort RoleAssigneeName | ForEacH{$yy = $_.RoleAssigneeName;
    $yy = $yy.Replace(" ","")
    $tmparray.$yy = "x"
}
$RBACArray += $tmpArray
$RBACCmd   += $tmpcmd
}

$tmpRoleGroups = $tmpCols | Where {$_.RoleAssigneeType -eq "RoleGroup"} | Group RoleAssigneeName | Select Name | Sort Name
$tmpRoleGroups | ForEach{
$tmpmem = ""
$tmpRG = "" | Select Name, Members
$tmpRG.Name = $_.Name
$tmpRG.Name
$tmpGroup = Get-Group $tmpRG.Name
$tmpGroupMembers = $tmpGroup.Members
$tmpGroupMembers | ForEach{$tmpRG.Members += $_.Name + " | "}
$RoleGroupArray += $tmpRG
}

$today = Get-Date
$HtmlHeader = "
<Style>
TABLE{border-width: 1px;padding: 1px;border-style: solid;border-color: black;border-collapse: collapse;}
TD{border-width: 1px;padding: 1px;border-style: solid;border-color: black;}
TH{font-family:’Arial’;font-size:12px;border-width: 1px;padding: 1px;border-style: solid;border-color: black;background-color:peachpuff;layout-flow:vertical-ideographic;Text-align:left}
TR{font-family:’Arial’;font-size:10px}
P{font-family:’Arial’;}
</Style>
<TITLE>Exchange Server 2010 RBAC</TITLE>"
$z="Exchange Server 2010 RBAC Information Last updated: $today<HR size=6 color=Green>"
$xhtml = $RBACArray | ConvertTo-Html -head $HtmlHeader -Title "Exchange Server 2010 RBAC" -body $z -PreContent ""

$txtYELLOW = @()
$i=0; $xHTML | foreach{IF ($_ -like "*<td>x</td>*"){ $txtYELLOW += $i}; $i++}
$txtYELLOW | ForEach{$xHTML[$_] = $xHTML[$_].Replace("<td>x</td>","<td bgcolor=Yellow align=center>x</td>")}

$xHTML += "<HR>"
$xHTML += $RBACCmd | ConvertTo-Html -Fragment

$xHTML += "<HR>"
$xHTML += $RoleGroupArray | ConvertTo-Html -Fragment

$xhtml | out-file c:psrbac.html