Enable/Disable new guest user account daily

From MikroTik Wiki
Revision as of 20:57, 8 January 2009 by Gregsowell (talk | contribs) (New page: We have hotspot gateways at different locations. Each uses radius authentication for Active Directory domain. In order to add better security for guest accounts I wanted a new guest acco...)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

We have hotspot gateways at different locations. Each uses radius authentication for Active Directory domain. In order to add better security for guest accounts I wanted a new guest account active everyday.

I have 366 hotspot user accounts created, each named guestX where X is the day of year. As in guest1 or the guest account for January 1st. Each account has a randomly generated password.

The Disable script runs at 23:58 everyday to disable the last 5 days guest accounts. I do 5 days just in case there were some sort of power failure and the script hasn't run for some time.

The Enable script runs at 00:01 everyday to enable that day's guest account.

The Autoit script creates a text file with all the guest accounts with random passwords ready to paste onto the command line. Autoit is a free scripting language for windows that will do most anything. Autoit Homepage

The last piece is up to you, which is how to distribute the usernames/passwords. We have a page on our sharepoint server that will give you that day's username/password.

Disable Script

local date
  1. get system date
set date [/system clock get date]
local day
local dayc
local month
local year
local leap
local dayof
  1. sets the values
set month [:pick $date 0 3]
set day [:pick $date 4 6]
  1. this is just incase the day has a 0 before the number
set dayc [:pick $date 5 6]
set year [:pick $date 7 11]
set leap [:pick $date 0 6]
set dayof 0
  1. sets starting date for month
if ($month = "feb") do={ :set dayof 31 }
if ($month = "mar") do={ :set dayof 59 }
if ($month = "apr") do={ :set dayof 90 }
if ($month = "may") do={ :set dayof 120 }
if ($month = "jun") do={ :set dayof 151 }
if ($month = "jul") do={ :set dayof 181 }
if ($month = "aug") do={ :set dayof 212 }
if ($month = "sep") do={ :set dayof 243 }
if ($month = "oct") do={ :set dayof 273 }
if ($month = "nov") do={ :set dayof 304 }
if ($month = "dec") do={ :set dayof 334 }
  1. check for leap year
if ($leap = "feb/29") do={ :set dayof 366 }
  1. this removes any leading 0 s from the day
if ([:pick $date 4 5] = 0) do={ :set day ($dayc)}
  1. determines day of year #
if ($dayof < 366) do={ :set dayof ($dayof + $day) }
  1. disables last 5 days worth, just incase of power failure
for e from ( $dayof - 5 ) to ( $dayof ) do={ /ip hotspot user disable ("guest" . $e) }
  1. this accounts for first of the year
if ($dayof < 4) do={ :set dayof 366 }
if ($dayof = 366) do={:for e from ( $dayof - 5 ) to ( $dayof ) do={ /ip hotspot user disable ("guest" . $e) }}

Enable Script

local date
set date [/system clock get date]
local day
local dayc
local month
local year
local leap
local dayof
  1. sets variables
set month [:pick $date 0 3]
  1. just incase there is a leading 0 in the day
set dayc [:pick $date 5 6]
set day [:pick $date 4 6]
set year [:pick $date 7 11]
set leap [:pick $date 0 6]
set dayof 0
  1. sets start day of year
if ($month = "feb") do={ :set dayof 31 }
if ($month = "mar") do={ :set dayof 59 }
if ($month = "apr") do={ :set dayof 90 }
if ($month = "may") do={ :set dayof 120 }
if ($month = "jun") do={ :set dayof 151 }
if ($month = "jul") do={ :set dayof 181 }
if ($month = "aug") do={ :set dayof 212 }
if ($month = "sep") do={ :set dayof 243 }
if ($month = "oct") do={ :set dayof 273 }
if ($month = "nov") do={ :set dayof 304 }
if ($month = "dec") do={ :set dayof 334 }
  1. checks for leap year
if ($leap = "feb/29") do={ :set dayof 366 }
  1. this removes any leading 0 s from the day
if ([:pick $date 4 5] = 0) do={ :set day ($dayc)}
  1. totals up the day of year
if ($dayof < 366) do={ :set dayof ($day + $dayof) }
log info ($dayof)
  1. enables proper day

/ip hotspot user enable ("guest" . $dayof)

Autoit Script

generate usernames and passwords for hotspot.

$file = FileOpen(@ScriptDir & "\users.txt", 1)

Check if file opened for writing OK

If $file = -1 Then 

   MsgBox(0, "Error", "Unable to open file.")
   Exit

EndIf

for $x = 1 to 365

FileWriteLine($file, "add name=""guest" & $x & """ password=""" & Random(111111, 999999, 1) & """ profile=default disabled=yes" & @CRLF)

Next FileClose($file)

Retrieved from "https://wiki.mikrotik.com/index.php?title=Enable/Disable_new_guest_user_account_daily&oldid=10310"