解决了

如何将密码作为安全字符串存储并在脚本中用于访问多个Prism网站

6
徽章 +2
  • 6373
  • 旅行者
  • 2个答复
需要详细信息如何将密码作为安全字符串存储并在脚本中用于访问多个Prism网站。我有一个脚本可以通过棱镜从多个Nutanix站点收集存储数据。现在,我需要删除纯文本密码。
我已经找到了参考文献,但仅找到“注意:出于安全原因,我们应该将密码存储为安全字符串,通过在启动PowerShell之前将其声明为变量。”谁能提供完成这项工作所需的步骤?
图标

最好的答案vshuguet2016年8月8日,21:04

\n
\nSorry for the delay, I was travelling.
\n
\nI've put together a quick GitHub Gist with 3 files you can use to showcase the 3 steps you'd need to achieve your goal: https:\/\/gist.github.com\/shuguet\/6cb4577414357c25dbeb3d018a4b7373<\/a>
\n
\nStep 1: the \"create_key.ps1\" file in there is just used to create the encryption key.
\nStep 2: the \"encrypt_password.ps1\" file is used for you to encrypt you password and store that in a file.
\nThose 2 steps you'll most likely do once, and never again until you have to change the password.
\n
\nStep 3: In file\"get_ntnx_vms_with_crypted_passwd.ps1\" is an exemple of using this to connect to a Nutanix Cluster and get the list of VMs names.
\n
\nYou can re-use that with whatever you want to do using the Nutanix Cmdlets.","className":"post__content__best_answer"}">
查看原件
    \nI have located references but only find \"NOTE: for security reasons we should store our passwords as a secure string, by declaring these as variables before starting PowerShell.\" Can anyone provide the steps required to make this work?","quoteUsername":"6373","translations":{"Common":{"like":"Like","unlike":"Unlike"},"Forum":{"Quote":"Quote","Share":"Share"}}}">

    4个答复

    Shuguet
    UserLevel 4
    徽章 +20
    这是一个常见的问题,您经常在PowerShell中面临。它在许多博客文章中都被详细介绍了,但是我想您可以看一下这两个部分,可以很好地恢复它:http://www.adminarsenal.com/admin-arsenal-blog/secure-password-with-powershell-encrypting-credentials-part-1/ http://www.adminarsenal.com/admin-arsenal-blog/secure-password-with-powershell-encrypting-credentials-part-2/
    Sylvain Huguet -2X Nutanix技术冠军2015-2016,法国Nutanix Connect Chapter Champion,法国VMUG首领,6倍VMware Vexpert 2011至2016
    6
    徽章 +2
    谢谢你!

    信息非常有帮助。我能够生成一个安全的密码,生成带有随机数据的AES密钥并导出到文件,创建Securestring对象和PSCREDENTIAL对象。

    现在,我需要知道如何在PowerShell脚本中使用它,或者我错过了一些东西。您能否指出我在访问Nutanix Prism网站的脚本中使用AES密钥文件的一个很好的例子?

    w/r,
    6373
    \n
    \nThe information was very helpful. I was able to generate a secure password, generate an AES key with random data and export to a file, create the SecureString object, and the PSCredential object.
    \n
    \nNow I need to know how to use this in a powershell script or did I miss something. Can you point me to a very good example of using the AES Key file in a script accessing a Nutanix Prism site?
    \n
    \nw\/r,
    \n6373","quoteUsername":"6373","translations":{"Common":{"like":"Like","unlike":"Unlike"},"Forum":{"Quote":"Quote","Share":"Share"}}}">
    vshuguet
    秩
    Userlevel 1
    徽章 +4
    嗨6373,

    对不起,延迟,我旅行了。

    我将一个快速的GitHub Gist组合在一起,其中包含3个文件,您可以用来展示实现目标所需的3个步骤:https://gist.github.com/shuguet/6cb457741414357c25dbeb3d018a4b7373

    步骤1:“ create_key.ps1”文件仅用于创建加密密钥。
    步骤2:“ encrypt_password.ps1”文件用于您加密密码并将其存储在文件中。
    您最有可能执行的这两个步骤,直到您不得不更改密码为止。

    步骤3:在文件“ get_ntnx_vms_with_crypted_pa​​sswd.ps1”中,是使用它连接到nutanix群集并获取VMS名称列表的一个典范。

    您可以使用Nutanix cmdlet进行任何您想做的事情重复使用。
    产品经理-Karbon Clusters&Kubernetes @ nutanix
    \n
    \nSorry for the delay, I was travelling.
    \n
    \nI've put together a quick GitHub Gist with 3 files you can use to showcase the 3 steps you'd need to achieve your goal: https:\/\/gist.github.com\/shuguet\/6cb4577414357c25dbeb3d018a4b7373<\/a>
    \n
    \nStep 1: the \"create_key.ps1\" file in there is just used to create the encryption key.
    \nStep 2: the \"encrypt_password.ps1\" file is used for you to encrypt you password and store that in a file.
    \nThose 2 steps you'll most likely do once, and never again until you have to change the password.
    \n
    \nStep 3: In file\"get_ntnx_vms_with_crypted_passwd.ps1\" is an exemple of using this to connect to a Nutanix Cluster and get the list of VMs names.
    \n
    \nYou can re-use that with whatever you want to do using the Nutanix Cmdlets.","quoteUsername":"vshuguet","translations":{"Common":{"like":"Like","unlike":"Unlike"},"Forum":{"Quote":"Quote","Share":"Share"}}}">
    6
    徽章 +2
    Shuguet,

    感谢您将所有步骤都放在一起!

    6373
    \n
    \nThank you for getting all of the steps put together for me!
    \n
    \n6373","quoteUsername":"6373","translations":{"Common":{"like":"Like","unlike":"Unlike"},"Forum":{"Quote":"Quote","Share":"Share"}}}">

    回复


    条款和条件
    Learn more about our cookies.<\/a>","cookiepolicy.button":"Accept cookies","cookiepolicy.button.deny":"Deny all","cookiepolicy.link":"Cookie settings","cookiepolicy.modal.title":"Cookie settings","cookiepolicy.modal.content":"We use 3 different kinds of cookies. You can choose which cookies you want to accept. We need basic cookies to make this site work, therefore these are the minimum you can select. Learn more about our cookies.<\/a>","cookiepolicy.modal.level1":"Basic
    Functional","cookiepolicy.modal.level2":"Normal
    Functional + analytics","cookiepolicy.modal.level3":"Complete
    Functional + analytics + social media + embedded videos"}}}">
    Baidu