DSCResources/MSFT_xDnsServerPrimaryZone/MSFT_xDnsServerPrimaryZone.psm1
|
Import-Module $PSScriptRoot\..\Helper.psm1 -Verbose:$false # Localized messages data LocalizedData { # culture="en-US" ConvertFrom-StringData @' CheckingZoneMessage = Checking DNS server zone with name '{0}' is '{1}'... AddingZoneMessage = Adding DNS server zone '{0}' ... RemovingZoneMessage = Removing DNS server zone '{0}' ... CheckPropertyMessage = Checking DNS server zone property '{0}' ... NotDesiredPropertyMessage = DNS server zone property '{0}' is not correct. Expected '{1}', actual '{2}' SetPropertyMessage = DNS server zone property '{0}' is set '@ } function Get-TargetResource { [CmdletBinding()] [OutputType([System.Collections.Hashtable])] param ( [Parameter(Mandatory = $true)] [ValidateNotNullOrEmpty()] [System.String] $Name, [Parameter()] [ValidateNotNullOrEmpty()] [System.String] $ZoneFile = "$Name.dns", [Parameter()] [ValidateSet('None','NonsecureAndSecure')] [System.String] $DynamicUpdate = 'None', [Parameter()] [ValidateSet('Present','Absent')] [System.String] $Ensure = 'Present' ) Assert-Module -Name 'DNSServer'; Write-Verbose ($LocalizedData.CheckingZoneMessage -f $Name, $Ensure); $dnsServerZone = Get-DnsServerZone -Name $Name -ErrorAction SilentlyContinue; $targetResource = @{ Name = $dnsServerZone.ZoneName; ZoneFile = $dnsServerZone.ZoneFile; DynamicUpdate = $dnsServerZone.DynamicUpdate; Ensure = if ($null -eq $dnsServerZone) { 'Absent' } else { 'Present' }; } return $targetResource; } #end function Get-TargetResource function Test-TargetResource { [CmdletBinding()] [OutputType([System.Boolean])] param ( [Parameter(Mandatory = $true)] [ValidateNotNullOrEmpty()] [System.String] $Name, [Parameter()] [ValidateNotNullOrEmpty()] [System.String] $ZoneFile = "$Name.dns", [Parameter()] [ValidateSet('None','NonsecureAndSecure')] [System.String] $DynamicUpdate = 'None', [Parameter()] [ValidateSet('Present','Absent')] [System.String] $Ensure = 'Present' ) $targetResource = Get-TargetResource @PSBoundParameters; $targetResourceInCompliance = $true; if ($Ensure -eq 'Present') { if ($targetResource.Ensure -eq 'Present') { if ($targetResource.ZoneFile -ne $ZoneFile) { Write-Verbose ($LocalizedData.NotDesiredPropertyMessage -f 'ZoneFile', $targetResource.ZoneFile, $ZoneFile); $targetResourceInCompliance = $false; } elseif ($targetResource.DynamicUpdate -ne $DynamicUpdate) { Write-Verbose ($LocalizedData.NotDesiredPropertyMessage -f 'DynamicUpdate', $targetResource.DynamicUpdate, $DynamicUpdate); $targetResourceInCompliance = $false; } } else { # Dns zone is present and needs removing Write-Verbose ($LocalizedData.NotDesiredPropertyMessage -f 'Ensure', 'Absent', 'Present'); $targetResourceInCompliance = $false; } } else { if ($targetResource.Ensure -eq 'Present') { ## Dns zone is absent and should be present Write-Verbose ($LocalizedData.NotDesiredPropertyMessage -f 'Ensure', 'Absent', 'Present'); $targetResourceInCompliance = $false; } } return $targetResourceInCompliance; } #end function Test-TargetResource function Set-TargetResource { [CmdletBinding()] param ( [Parameter(Mandatory = $true)] [ValidateNotNullOrEmpty()] [System.String] $Name, [Parameter()] [ValidateNotNullOrEmpty()] [System.String] $ZoneFile = "$Name.dns", [Parameter()] [ValidateSet('None','NonsecureAndSecure')] [System.String] $DynamicUpdate = 'None', [Parameter()] [ValidateSet('Present','Absent')] [System.String] $Ensure = 'Present' ) Assert-Module -Name 'DNSServer'; if ($Ensure -eq 'Present') { Write-Verbose ($LocalizedData.CheckingZoneMessage -f $Name, $Ensure); $dnsServerZone = Get-DnsServerZone -Name $Name -ErrorAction SilentlyContinue; if ($dnsServerZone) { ## Update the existing zone if ($dnsServerZone.ZoneFile -ne $ZoneFile) { $dnsServerZone | Set-DnsServerPrimaryZone -ZoneFile $ZoneFile; Write-Verbose ($LocalizedData.SetPropertyMessage -f 'ZoneFile'); } if ($dnsServerZone.DynamicUpdate -ne $DynamicUpdate) { $dnsServerZone | Set-DnsServerPrimaryZone -DynamicUpdate $DynamicUpdate; Write-Verbose ($LocalizedData.SetPropertyMessage -f 'DynamicUpdate'); } } elseif (-not $dnsServerZone) { ## Create the zone Write-Verbose ($LocalizedData.AddingZoneMessage -f $Name); Add-DnsServerPrimaryZone -Name $Name -ZoneFile $ZoneFile -DynamicUpdate $DynamicUpdate; } } elseif ($Ensure -eq 'Absent') { # Remove the DNS Server zone Write-Verbose ($LocalizedData.RemovingZoneMessage -f $Name); Get-DnsServerZone -Name $Name | Remove-DnsServerZone -Force; } } #end function Set-TargetResource |