Test for VM remotely without permissions
I have a PowerShell script that queries all of the computers on my domain via:
$ADlist = (([adsi]"WinNT://$((Get-WMIObject Win32_ComputerSystem).Domain)").Children) |
Where ({$_.schemaclassname -eq 'computer'}) |
Where ({$_.path -ne ''}) |
Select Path | ft -Hide | Out-String
Works great. The goal is to loop through these computers to retrieve hardware and software info via WMI objects. Mission accomplished.
Except...I started throwing this on certain machines:
I am set up as a domain controller at my company, and the DNS hostname resolved and was responsive in my error catching tests. A little investigation into these problem PCs revealed that these were VMs and VM hosts.
Is there a way I can detect if a host is a VM remotely (of course) without whatever extra permissions I require to run GWMI commands? Actually, I just need to ignore them, as I'm only interested in physical machines. Only way I've found is to query the model field from Win32_ComputerSystem, but that doesn't help as I don't have permissions to run that command on these computers.
Researched has turned up empty, or rely on accessing the WM host physically, which are halfway around the world.
If absolutely necessary, I can be granted elevated permissions to access these machines, but the idea was to make this script accessible to my entire team. Requiring special permissions to run the script means that only I can run it.
Ended up enabling RSAT and using AD to do it. Much cleaner.
import-module ActiveDirectory
$ADlist = get-adcomputer -filter '*' -searchbase "OU=Workstations,DC=[redacted],DC=com" -properties 'Name' `
| Where { ($_.DistinguishedName -notlike "*OU=Appliances,*") } | FT Name -hide | Out-String
$computers = ($ADlist -split '[\r\n]') | ? {$_}
- Toast Notification - Open a web page with specific character on the link
- Fabric-Rest API: why updateFromGit is returning invalid git hash or missing options?
- Does anyone know how to calculate Authenticode File hash in PowerShell?
- WDAC policy doesnt disable
- PowerShell Invoke-WebRequest throws WebCmdletResponseException
- How to restart or shutdown a remote computer with comment from powershell
- how to get a string of a mutable array?
- Powershell Foreach-Object -Parallel how to change the value of a variable outside the loop (track progress)
- Function parameter ValidateScript called multiple times
- workingdirectory does not work when verb is used
- Preserving the colors when piping Powershell's write-host into a file, when called from python subprocess
- Windows Powershell policy execution bypass
- In a compiled Cmdlet, how can I write an error from a thread job without burying the PositionMessage?
- Assigning Roles to a Group and scoping that to an Admin Unit programatically in Entra
- Alternative to "Sort" as a PowerShell verb?
- Connecting to a network folder with username/password in Powershell
- Windows Form Foreach remove only removes half Form.Control elements
- Script to get Log file name of database, change full recovery to simple, shrink log file and set back to full recovery
- svn status powershell non-ascii characters problem
- MSgraph cannot find string in attachment value using Azure Automation
- Trying to extract msi file metadata in powershell
- Get Notes field from Get-ADGroup
- powershell to resolve junction target path
- Unrecognized command after poetry's installation on Windows 11
- How to determine if user has admin rights, but script not running elevated
- Return the current version of an app with winget
- Running msbuild via cmake inside powershell
- How to Enable Substring Matching in PowerShell Tab Completion?
- Regex to match quoted and non-quoted text, and not any part matches
- How to copy only updated or newer files