ADSecurityGroupMembershipDiscovery 1.0.0.0 ADSecurityGroupMembershipDiscovery Microsoft.SystemCenter.DataWarehouse.Library 6.0.6278.0 31bf3856ad364e35 Microsoft.Windows.Library 6.0.6278.0 31bf3856ad364e35 Microsoft.SystemCenter.InstanceGroup.Library 6.0.6278.0 31bf3856ad364e35 System.Library 6.0.6278.0 31bf3856ad364e35 Microsoft.SystemCenter.Library 6.0.6278.0 31bf3856ad364e35 System.Health.Library 6.0.6278.0 31bf3856ad364e35 Discovery 86400 DiscoverADGroupMembership.vbs $MPElement$ $Target/Id$ $Target/Property[Type="Windows!Microsoft.Windows.Computer"]/PrincipalName$ $Target/Property[Type="Windows!Microsoft.Windows.Computer"]/NetbiosComputerName$ "$Target/Property[Type="Windows!Microsoft.Windows.Computer"]/OrganizationalUnit$" On Error Resume Next Const E_ADS_PROPERTY_NOT_FOUND = &h8000500D Dim oArgs, oAPI, SourceType, SourceID, ManagedEntityID, TargetComputer, oDiscoveryData, oInst, SNetBiosName, sOU, sQuery, sDC, posDC 'Grab required environment variables from OpsMgr Set oArgs = WScript.Arguments SourceType = 0 ' SourceId is the GUID of the discovery object that runs the script. SourceId = oArgs(0) ' ManagedEntityId is the GUID of the computer class that is targeted by the script. ManagedEntityId = oArgs(1) ' TargetComputer is the Fully Qualified Domain Name ' of the computer that is targeted by the script. The FQDN ' is within Arg(2) of the command prompt. TargetComputer = oArgs(2) sNetBiosName = oArgs(3) sOU = oArgs(4) sQuery="LDAP://CN=" & sNetBiosName & "," & sOU posDC=InStr(sQuery,"DC=") sDC=Right(sQuery, Len(sQuery)-(posDC-1)) 'Create required scripting objects Set objUser = GetObject(sQuery) Set oAPI = CreateObject("MOM.ScriptAPI") Set oDiscoveryData = oAPI.CreateDiscoveryData(SourceType, SourceId, ManagedEntityId) intPrimaryGroupID = objUser.Get("primaryGroupID") arrMemberOf = objUser.GetEx("memberOf") Call oAPI.LogScriptEvent("DiscoverADGroupMembership.vbs",1234,4,"AD Global Group Membership Discovery Started. Parameters passed to the discovery script are, in order: " & SourceID & " " & ManagedEntityID & " " & TargetComputer & " " & sNetBiosName & " " & sOU) 'Get Group Membeship If Err.Number = E_ADS_PROPERTY_NOT_FOUND Then Call oAPI.LogScriptEvent("DiscoverADGroupMembership.vbs",9864,1,"The memberOf attribute is not set!") Else For Each Group in arrMemberOf Set oInst = oDiscoveryData.CreateClassInstance("$MPElement[Name='ADSecurityGroupMembershipDiscovery.Class']$") Call oInst.AddProperty("$MPElement[Name='Windows!Microsoft.Windows.Computer']/PrincipalName$", TargetComputer) Call oInst.AddProperty("$MPElement[Name='System!System.Entity']/DisplayName$", TargetComputer) Call oInst.AddProperty("$MPElement[Name='ADSecurityGroupMembershipDiscovery.Class']/ADGroupMembership$", Group) Call oDiscoveryData.AddInstance(oInst) Next End If 'Reset variables and get primary group membership sQuery=sDC Set objConnection = CreateObject("ADODB.Connection") objConnection.Open "Provider=ADsDSOObject;" Set objCommand = CreateObject("ADODB.Command") objCommand.ActiveConnection = objConnection objCommand.CommandText = "<LDAP://" & sQuery & ">;(objectCategory=Group);distinguishedName,primaryGroupToken;subtree" Set objRecordSet = objCommand.Execute Do Until objRecordset.EOF If objRecordset.Fields("primaryGroupToken") = intPrimaryGroupID Then Set oInst = oDiscoveryData.CreateClassInstance("$MPElement[Name='ADSecurityGroupMembershipDiscovery.Class']$") Call oInst.AddProperty("$MPElement[Name='Windows!Microsoft.Windows.Computer']/PrincipalName$", TargetComputer) Call oInst.AddProperty("$MPElement[Name='System!System.Entity']/DisplayName$", TargetComputer) Call oInst.AddProperty("$MPElement[Name='ADSecurityGroupMembershipDiscovery.Class']/ADGroupMembership$", objRecordset.Fields("distinguishedname")) Call oDiscoveryData.AddInstance(oInst) End If objRecordset.MoveNext Loop objConnection.Close Call oAPI.Return(oDiscoveryData) Call oAPI.LogScriptEvent("DiscoverADGroupMembership.vbs",1235,4,"AD Global Group Membership Discovery Finished. ") 60 Discovery $MPElement$ $MPElement[Name="UINameSpace8e14cb8716444609b6e9cb8a89224d26.Group"]$ $MPElement[Name="Windows!Microsoft.Windows.Computer"]$ $MPElement[Name="MicrosoftSystemCenterInstanceGroupLibrary6062780!Microsoft.SystemCenter.InstanceGroupContainsEntities"]$ $MPElement[Name="ADSecurityGroupMembershipDiscovery.Class"]$ $MPElement[Name="ADSecurityGroupMembershipDiscovery.Class"]/ADGroupMembership$ ContainsSubstring TestOverrideADSecGroup AD Security Group Membership Discovery ADSecurityGroupMembershipDiscovery.Class ADSecurityGroupMembershipDiscovery.Script AD Security Group - Test Group Populate AD Security Group - Test Group This discovery rule populates the group 'AD Security Group - Test Group' Test for event 9999 - AD Security Group Discovery MP Test for event 998 - AD Security Group Discovery MP 777