Skip to content

v3.0.0-preview0001

Pre-release
Pre-release
Compare
Choose a tag to compare
@dscbot dscbot released this 13 May 17:35
· 25 commits to master since this release
v3.0.0-preview0001
e35a55e
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

[v3.0.0-preview0001]

Added

  • SecurityPolicyDsc
    • Added automatic release with a new CI pipeline
      Issue #143.

Changed

  • SecurityPolicyDsc:
    • Resolved custom Script Analyzer rules that was added to the test framework.
    • Move change log to CHANGELOG.md
    • Added support for more SDDL SID constants
      Issue #126.
      • Added functions to convert identity to and from SDDL SID constants
      • Changed Format-RestrictedRemoteSAM to use new function to create strings with additional SDDL SID constants
      • Changed ConvertTo-CimRestrictedRemoteSam to use new function to accept more possible SDDL SID constants
      • Changed ConvertTo-CimRestrictedRemoteSam to skip CimInstance creation if no valid Identity was found
    • Add schema descriptions for all properties and update README.
    • Added PowerShell Dsc Resource Help Files

2.10.0.0

  • Changes to SecurityPolicyDsc:
    • Opt-in to the following DSC Resource Common Meta Tests:
      • Common Tests - Validate Module Files
      • Common Tests - Validate Script Files
      • Common Tests - Validate Markdown Files
      • Common Tests - Required Script Analyzer Rules
      • Common Tests - Flagged Script Analyzer Rules
      • Common Tests - New Error-Level Script Analyzer Rules
      • Common Tests - Custom Script Analyzer Rules
      • Common Tests - Validate Markdown Links
      • Common Tests - Relative Path Length
      • Common Tests - Validate Example Files
      • Common Tests - Validate Example Files To Be Published
    • Fix keywords to lower-case to align with guideline.

2.9.0.0

  • Bug fix - Max password age fails when setting to 0.
    Fixes Issue #121.
  • Bug fix - Domain_controller_LDAP_server_signing_requirements - Require Signing.
    Fixes Issue #122.
  • Bug fix - Network_security_Restrict_NTLM security options correct parameter validation.
    This fix could impact your systems.

2.8.0.0

  • Bug fix - Issue 71 - Issue Added Validation Attributes to AccountPolicy & SecurityOption
  • Bug fix - Network_security_Restrict_NTLM security option names now maps to correct keys.
    This fix could impact your systems.
  • Updated LICENSE file to match the Microsoft Open Source Team standard.
    Fixes Issue #108.
  • Refactored the SID translation process to not throw a terminating error when called from Test-TargetResource
  • Updated verbose message during the SID translation process to identify the policy where an orphaned SID exists
  • Added the EType "FUTURE" to the security option
    "Network_security_Configure_encryption_types_allowed_for_Kerberos"
  • Documentation update to include all valid settings for security options and account policies

2.7.0.0

  • Bug fix - Issue 83 - Network_access_Remotely_accessible_registry_paths_and_subpaths correctly applies multiple paths
  • Update LICENSE file to match the Microsoft Open Source Team standard

2.6.0.0

  • Added SecurityOption - Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM
  • Bug fix - Issue 105 - Spelling error in SecurityOption
    User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users
  • Bug fix - Issue 90 - Corrected value for Microsoft_network_server_Server_SPN_target_name_validation_level policy

2.5.0.0

  • Added handler for null value in SecurityOption
  • Moved the helper module out from DSCResource folder to the Modules folder.
  • Fixed SecurityPolicyResourceHelper.Tests.ps1 so it possible to run the tests
    locally.
  • Fixed minor typos.

2.4.0.0

  • Added additional error handling to ConvertTo-Sid helper function.

2.3.0.0

  • Updated documentation.
    • Add example of applying Kerberos policies
    • Added hyper links to readme

2.2.0.0

  • Fixed bug in UserRightAssignment where Get-DscConfiguration would fail if it returns $Identity as single string

2.1.0.0

  • Updated SecurityOption to handle multi-line logon messages
  • SecurityOption: Added logic and example to handle scenario when using
    Interactive_logon_Message_text_for_users_attempting_to_log_on

2.0.0.0

  • Added SecurityOption and AccountPolicy
  • Removed SecuritySetting

1.5.0.0

  • Refactored user rights assignment to read and test easier.

1.4.0.0

  • Fixed bug in which friendly name translation may fail if user or group contains 'S-'.
  • Fixed bug identified in issue 33 and 34 where Test-TargetResource would return false but was true

1.3.0.0

  • Added functionality to support BaselineManagement Module.
  • Updated UserRightsAssignment resource to respect dynamic local accounts.
  • Added SecuritySetting resource to process additional INF settings.

1.2.0.0

  • SecurityTemplate: Remove [ValidateNotNullOrEmpty()] attribute for IsSingleInstance parameter
  • Fixed typos

1.1.0.0

  • SecurityTemplate:
    • Made SecurityTemplate compatible with Nano Server
    • Fixed bug in which Path parameter failed when no User section was present

1.0.0.0

  • Initial release with the following resources:
    • UserRightsAssignment
    • SecurityTemplate
Assets 3
Loading