Authentication

The following PowerShell script shows how to authenticate to the Change Tracker API. It prompts for the URL, asks whether to skip certificate validation, then collects the user's credentials and creates a new session. Netwrix recommends trusted certificates for all environments, but if you are using self-signed certificates in a lab environment, you can skip certificate validation.

The $NctSession variable stores the session information for use in subsequent API calls.

$url = Read-Host "Enter URL (https://192.168.1.1/api)"

# Do not use this in production environments where trusted certificates are required
$SkipCertificateCheck = Read-Host "Skip Certificate Check (y/n)"
if ($SkipCertificateCheck -eq "y") {
    $SkipCertificateCheck = $true
}
else {
    $SkipCertificateCheck = $false
}

# Collect credentials
$username = Read-Host "Enter Username"
$password = Read-Host "Enter Password" -AsSecureString
$ApiCredential = New-Object System.Management.Automation.PSCredential ($username, $password)
Remove-Variable -Name password

# Build request
$body = @{
    "UserName" = $ApiCredential.UserName
    "Password" = $ApiCredential.GetNetworkCredential().Password
    "RememberMe" = "false"
} | ConvertTo-Json

# Create new session
$uri = "$($url)/auth/credentials"

$NctSession = New-Object Microsoft.PowerShell.Commands.WebRequestSession

try {
    Invoke-RestMethod `
    -Method Post `
    -ContentType application/json `
    -Uri $uri `
    -Headers @{ Accept = 'application/json' } `
    -Body $body `
    -WebSession $NctSession `
    -SkipCertificateCheck:$SkipCertificateCheck
}
catch {
    Write-Error "Failed to create session: $_"
    throw
}
finally {
    Remove-Variable -Name body
}