IISResetMe/Get-AuditPolicy.ps1

## Get-AuditPolicy.ps1
#Requires -Version 5

# Define AuditSetting enum
[System.Flags()]
enum AuditSetting {
  None    = 0
  Success = 1
  Failure = 2
  All     = 3
}

function Get-AuditPolicy
{
  [CmdletBinding(DefaultParameterSetName = 'Category')]
  param(
    [Parameter(Mandatory = $false, ParameterSetName = 'Category')]
    [ValidateNotNullOrEmpty()]
    [Alias('Name')]
    [string[]]$Category = '*',

    [Parameter(Mandatory = $false, ParameterSetName = 'Subcategory')]
    [ValidateNotNullOrEmpty()]
    [string[]]$Subcategory
  )

  # Prepare auditpol arguments
  $auditPolArgs = @("/get")
  if($PSCmdlet.ParameterSetName -eq 'Category'){
    $auditPolArgs += "/category:$($Category -join ',')"
  }
  else {
    $auditPolArgs += "/subcategory:$($Subcategory -join ',')"
  }

  # Parse `auditpol` output
  & 'auditpol' $auditPolArgs |?{$_.Trim()}|Select -Skip 2|%{
    # No indentation? We've got a super-category name
    if($_ -match '^\w'){
      $CategoryName = $_.Trim()
    }
    else{
      # Split the subcategory name from the setting
      $SubcategoryName,$Setting = $_.Trim() -split '\s{2,}'

      # Return customobject with appropriately structured audit settings
      [pscustomobject]@{
        Category    = $CategoryName
        SubCategory = $SubcategoryName
        Setting     = $(
          $val = [AuditSetting]::None
          switch -regex ($Setting){
            'Success' {
              $val += [AuditSetting]::Success
            }
            'Failure' {
              $val += [AuditSetting]::Failure
            }
          }
          $val
        )
      }
    }
  }
}
	#Requires -Version 5

	# Define AuditSetting enum
	[System.Flags()]
	enum AuditSetting {
	None = 0
	Success = 1
	Failure = 2
	All = 3
	}

	function Get-AuditPolicy
	{
	[CmdletBinding(DefaultParameterSetName = 'Category')]
	param(
	[Parameter(Mandatory = $false, ParameterSetName = 'Category')]
	[ValidateNotNullOrEmpty()]
	[Alias('Name')]
	[string[]]$Category = '*',

	[Parameter(Mandatory = $false, ParameterSetName = 'Subcategory')]
	[ValidateNotNullOrEmpty()]
	[string[]]$Subcategory
	)

	# Prepare auditpol arguments
	$auditPolArgs = @("/get")
	if($PSCmdlet.ParameterSetName -eq 'Category'){
	$auditPolArgs += "/category:$($Category -join ',')"
	}
	else {
	$auditPolArgs += "/subcategory:$($Subcategory -join ',')"
	}

	# Parse `auditpol` output
	& 'auditpol' $auditPolArgs \|?{$_.Trim()}\|Select -Skip 2\|%{
	# No indentation? We've got a super-category name
	if($_ -match '^\w'){
	$CategoryName = $_.Trim()
	}
	else{
	# Split the subcategory name from the setting
	$SubcategoryName,$Setting = $_.Trim() -split '\s{2,}'

	# Return customobject with appropriately structured audit settings
	[pscustomobject]@{
	Category = $CategoryName
	SubCategory = $SubcategoryName
	Setting = $(
	$val = [AuditSetting]::None
	switch -regex ($Setting){
	'Success' {
	$val += [AuditSetting]::Success
	}
	'Failure' {
	$val += [AuditSetting]::Failure
	}
	}
	$val
	)
	}
	}
	}
	}