Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support for complex AD domain join passwords #522

Merged
merged 5 commits into from
Oct 31, 2023
Merged

Support for complex AD domain join passwords #522

merged 5 commits into from
Oct 31, 2023

Conversation

SvenAelterman
Copy link
Contributor

@SvenAelterman SvenAelterman commented Oct 31, 2023
edited
Loading

Overview/Summary

Wrap domain join password in " in the script arguments and escape any " that might be in the password.

This PR fixes/adds/changes/removes

  1. Fixes Domain Join Password cannot contain | (and possibly other characters too) #515

Breaking Changes

N/A

Testing Evidence

Successful deployment of FSLogix and MSIX storage accounts with AD domain join using a complex password containing |, @, \, :, and many more.

As part of this Pull Request I have

  • Read the Contribution Guide and ensured this PR is compliant with the guide
  • Ensured the resource API versions in .bicep file/s I am adding/editing are using the latest API version possible
  • Checked for duplicate Pull Requests
  • Associated it with relevant GitHub Issues
  • (AVD LZA Team Only) Associated it with relevant ADO Items
  • Ensured my code/branch is up-to-date with the latest changes in the main branch
  • Performed testing and provided evidence.
  • Updated relevant and associated documentation (e.g. Contribution Guide, Module READMEs, Docs etc.)

@SvenAelterman
Add local test ignores
b9b9de2
@SvenAelterman
Update casing in file name
014b900
@SvenAelterman
Disable deleting drive mapping. Update zip.
17a183d
@SvenAelterman
Enclose SecurityPrincipalName in "
9d5c5bd 
Delete unused variables to avoid Bicep warnings
Bicep linting
@SvenAelterman
Support | and other special chars in domain pwd
9498946 
Remove unnecessary variables to avoid Bicep warnings
Avoid duplication of file names by creating variables
Bicep linting
github-advanced-security[bot]
github-advanced-security bot found potential problems Oct 31, 2023
View reviewed changes
workload/scripts/DSCStorageScripts/Script-DomainJoinStorage.ps1
@@ -182,7 +182,8 @@

Write-Log "Unmounting drive"
# Remove-PSDrive -Name $DriveLetter -Force
net use ${DriveLetter} /delete
# HACK: Disabled because it fails

Check notice

Code scanning / devskim

A "TODO" or similar was left in source code, possibly indicating incomplete functionality Note

Suspicious comment
@moisesjgomez moisesjgomez changed the base branch from main to complex-adjoin-pw October 31, 2023 17:38
@moisesjgomez moisesjgomez merged commit 6b26a82 into Azure:complex-adjoin-pw Oct 31, 2023
14 checks passed
@SvenAelterman
Copy link
Contributor Author

@moisesjgomez I discovered that this solution is still incomplete too. Single quotes in the password (') still causes an issue with the storage account AD domain join scripts.

@moisesjgomez
Copy link
Contributor

@SvenAelterman Got it thanks for the update. I've merged into a new feature branch for testing. If you are able to add this component please raise another PR. Thank you.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Domain Join Password cannot contain | (and possibly other characters too)
2 participants
@SvenAelterman @moisesjgomez