added defender disabling gpo, changed print messages in scripts, logging set domain network

author: heqnx <root@heqnx.com> 2025-07-14 16:16:45 +0300
committer: heqnx <root@heqnx.com> 2025-07-14 16:16:45 +0300
commit: 32a92a4fd19baa6438c0443deb247e93d02b1948 (patch)
tree: 8e310eeaac4da16f58badbb8e906f6566c3c0803 /ansible/roles/dc01/tasks/setup_defender_gpo.yaml
parent: b1ca188b8a16a49b79cd18ae39261fe9c666edf1 (diff)
download: ansible-active-directory-range-32a92a4fd19baa6438c0443deb247e93d02b1948.tar.gz
ansible-active-directory-range-32a92a4fd19baa6438c0443deb247e93d02b1948.zip
1 files changed, 7 insertions, 0 deletions
diff --git a/ansible/roles/dc01/tasks/setup_defender_gpo.yaml b/ansible/roles/dc01/tasks/setup_defender_gpo.yaml
new file mode 100644
index 0000000..56e7809
--- /dev/null
+++ b/ansible/roles/dc01/tasks/setup_defender_gpo.yaml
@@ -0,0 +1,7 @@
+- name: execute setup-defender-gpo.ps1 as domain admin
+  ansible.windows.win_command: powershell.exe -ExecutionPolicy Bypass -File C:\scripts\setup-defender-gpo.ps1 -DomainName "{{ main_domain_name }}"
+  become: yes
+  become_method: runas
+  become_user: "{{ main_domain_name }}\\Administrator"
+  vars:
+    ansible_become_password: "{{ default_win_password }}"
author	heqnx <root@heqnx.com>	2025-07-14 16:16:45 +0300
committer	heqnx <root@heqnx.com>	2025-07-14 16:16:45 +0300
commit	32a92a4fd19baa6438c0443deb247e93d02b1948 (patch)
tree	8e310eeaac4da16f58badbb8e906f6566c3c0803 /ansible/roles/dc01/tasks/setup_defender_gpo.yaml
parent	b1ca188b8a16a49b79cd18ae39261fe9c666edf1 (diff)
download	ansible-active-directory-range-32a92a4fd19baa6438c0443deb247e93d02b1948.tar.gz ansible-active-directory-range-32a92a4fd19baa6438c0443deb247e93d02b1948.zip