def test_hLsarQueryInformationPolicy2(self): dce, rpctransport, policyHandle = self.connect() resp = lsad.hLsarQueryInformationPolicy2(dce, policyHandle, lsad.POLICY_INFORMATION_CLASS.PolicyAuditLogInformation) resp.dump() resp = lsad.hLsarQueryInformationPolicy2(dce, policyHandle, lsad.POLICY_INFORMATION_CLASS.PolicyAuditEventsInformation) resp.dump() resp = lsad.hLsarQueryInformationPolicy2(dce, policyHandle, lsad.POLICY_INFORMATION_CLASS.PolicyPrimaryDomainInformation) resp.dump() resp = lsad.hLsarQueryInformationPolicy2(dce, policyHandle, lsad.POLICY_INFORMATION_CLASS.PolicyPdAccountInformation) resp.dump() resp = lsad.hLsarQueryInformationPolicy2(dce, policyHandle, lsad.POLICY_INFORMATION_CLASS.PolicyAccountDomainInformation) resp.dump() resp = lsad.hLsarQueryInformationPolicy2(dce, policyHandle, lsad.POLICY_INFORMATION_CLASS.PolicyLsaServerRoleInformation) resp.dump() resp = lsad.hLsarQueryInformationPolicy2(dce, policyHandle, lsad.POLICY_INFORMATION_CLASS.PolicyReplicaSourceInformation) resp.dump() resp = lsad.hLsarQueryInformationPolicy2(dce, policyHandle, lsad.POLICY_INFORMATION_CLASS.PolicyDnsDomainInformation) resp.dump() resp = lsad.hLsarQueryInformationPolicy2(dce, policyHandle, lsad.POLICY_INFORMATION_CLASS.PolicyDnsDomainInformationInt) resp.dump() resp = lsad.hLsarQueryInformationPolicy2(dce, policyHandle, lsad.POLICY_INFORMATION_CLASS.PolicyLocalAccountDomainInformation) resp.dump()
def test_hLsarSetInformationPolicy2(self): dce, rpctransport, policyHandle = self.connect() resp = lsad.hLsarQueryInformationPolicy2(dce, policyHandle, lsad.POLICY_INFORMATION_CLASS.PolicyAuditEventsInformation) resp.dump() oldValue = resp['PolicyInformation']['PolicyAuditEventsInfo']['AuditingMode'] resp['PolicyInformation']['PolicyAuditEventsInfo']['AuditingMode'] = 0 resp2 = lsad.hLsarSetInformationPolicy2(dce, policyHandle, lsad.POLICY_INFORMATION_CLASS.PolicyAuditEventsInformation, resp['PolicyInformation'] ) resp2.dump() resp = lsad.hLsarQueryInformationPolicy2(dce, policyHandle, lsad.POLICY_INFORMATION_CLASS.PolicyAuditEventsInformation) resp.dump() resp['PolicyInformation']['PolicyAuditEventsInfo']['AuditingMode'] = oldValue resp2 = lsad.hLsarSetInformationPolicy2(dce, policyHandle, lsad.POLICY_INFORMATION_CLASS.PolicyAuditEventsInformation, resp['PolicyInformation'] ) resp2.dump()
def test_hLsarAddPrivilegesToAccount_hLsarRemovePrivilegesFromAccount(self): dce, rpctransport, policyHandle = self.connect() resp = lsad.hLsarQueryInformationPolicy2(dce, policyHandle,lsad.POLICY_INFORMATION_CLASS.PolicyAccountDomainInformation) sid = resp['PolicyInformation']['PolicyAccountDomainInfo']['DomainSid'].formatCanonical() sid = sid + '-9999' resp = lsad.hLsarCreateAccount(dce, policyHandle, sid) accountHandle = resp['AccountHandle'] attributes = list() attribute = lsad.LSAPR_LUID_AND_ATTRIBUTES() attribute['Luid']['LowPart'] = 0 attribute['Luid']['HighPart'] = 3 attribute['Attributes'] = 3 attributes.append(attribute) try: resp = lsad.hLsarAddPrivilegesToAccount(dce,accountHandle, attributes) resp.dump() except: resp = lsad.hLsarDeleteObject(dce, accountHandle) return resp = lsad.hLsarRemovePrivilegesFromAccount(dce, accountHandle, NULL, 1) resp.dump() resp = lsad.hLsarDeleteObject(dce,accountHandle ) resp.dump()
def test_hLsarCreateAccount_hLsarDeleteObject(self): dce, rpctransport, policyHandle = self.connect() resp = lsad.hLsarQueryInformationPolicy2(dce, policyHandle,lsad.POLICY_INFORMATION_CLASS.PolicyAccountDomainInformation) sid = resp['PolicyInformation']['PolicyAccountDomainInfo']['DomainSid'].formatCanonical() sid = sid + '-9999' resp = lsad.hLsarCreateAccount(dce, policyHandle, sid) resp.dump() resp = lsad.hLsarDeleteObject(dce,resp['AccountHandle']) resp.dump()