Hello,
I am currently using JEA to limit access on my servers and to delegate rights.
I don’t understand how the user can run a powershell script without giving him the “powershell.exe”
For example:
I have three scripts.
Test.ps1 (write-host “hello test”)
Test2.ps1(write-host “hello test1”)
Test3.ps1(write-host “hello test2”)
in my role file, I fill in the location of my script:
External commands (scripts and applications) to make visible when applied to a session
VisibleExternalCommands =‘C:\Windows\system32\whoami.exe’,‘C:\Program Files\JEA\Script \Test1.ps1’
But the user cannot launch it.
So if I add:
External commands (scripts and applications) to make visible when applied to a session
VisibleExternalCommands =‘C:\Windows\system32\whoami.exe’,‘C:\Program Files\JEA\Script \Test1.ps1’,‘C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe’
It works but it can run all =(
How do we do that?
Do I need to create a function in a module?
Best regards