MVA : Getting Started with PowerShell Desired State Configuration (DSC)

This topic contains 1 reply, has 2 voices, and was last updated by  Don Jones 1 week, 6 days ago.

  • Author
    Posts
  • #101912

    Mathias
    Participant

    Hello,

    i am quite new to PS and DSC. Just watching and trying to understand Jason and Jeffreys Video on the MVA.
    The issue is, that how i understood it, the Compliance Server is replaced with a Report Server and nobody updated the example scripts.
    Is there a way to update the example scripts, replacing the Compliance Server wit a Report Server , that they will work for the MVA-Session?

    configuration HTTPPullServer
    {
        # Modules must exist on target pull server
        Import-DSCResource -ModuleName xPSDesiredStateConfiguration
    
        Node zrhhytt06w
        {
            WindowsFeature DSCServiceFeature
            {
                Ensure = "Present"
                Name   = "DSC-Service"
            }
    
            WindowsFeature IISConsole {
                Ensure = "Present"
                Name   = "Web-Mgmt-Console"
            }
    
            xDscWebService PSDSCPullServer
            {
                Ensure                  = "Present"
                EndpointName            = "PSDSCPullServer"
                Port                    = 8080
                PhysicalPath            = "$env:SystemDrive\inetpub\wwwroot\PSDSCPullServer"
                CertificateThumbPrint   = "AllowUnencryptedTraffic"
                ModulePath              = "$env:PROGRAMFILES\WindowsPowerShell\DscService\Modules"
                ConfigurationPath       = "$env:PROGRAMFILES\WindowsPowerShell\DscService\Configuration"
                State                   = "Started"
                DependsOn               = "[WindowsFeature]DSCServiceFeature"
                UseSecurityBestPractices = $true 
            }
    
            xDscWebService PSDSCComplianceServer
            {
                Ensure                  = "Present"
                EndpointName            = "PSDSCComplianceServer"
                Port                    = 9080
                PhysicalPath            = "$env:SystemDrive\inetpub\wwwroot\PSDSCComplianceServer"
                CertificateThumbPrint   = "AllowUnencryptedTraffic"
                State                   = "Started"
                IsComplianceServer      = $true
                DependsOn               = ("[WindowsFeature]DSCServiceFeature","[xDSCWebService]PSDSCPullServer")
                UseSecurityBestPractices = $true
            }
        }
    }
    
    # Generate MOF
    
    HTTPPullServer -OutputPath C:\DSC\HTTP
    

    Many thanks in advance for your help.

    BR
    Mathias

  • #102173

    Don Jones
    Keymaster

    Well, it's a bit more than that, since from 4.0 to 5.0 they made a bunch of changes in how the server side of things work. Also bear in mind that the server piece provided with Windows Server is meant as "sample code;" although it's gotten some recent improvements (like SQL Server support), it might not be suitable for all production scenarios.

    "The DSC Book" explores the new options in quite some detail, if you're interested, and we keep that up to date as best we can.

    Meantime, the official docs aren't bad. Start at https://docs.microsoft.com/en-us/powershell/dsc/reportserver for the Report Server. Just, again, heed the notice that the functionality is more or less deprecated – they aren't developing it further.

You must be logged in to reply to this topic.