A list of common PowerShell commands for AD. Retrieve AD user(s) # get AD user – basic attributes Get-ADUser “JohnDo” # get AD user – all attributes Get-ADUser “JohnDo” -Properties * # get AD user – additional attribute(s) Get-ADUser “JohnDo” -Properties PasswordLastSet Get-ADUser “JohnDo” -Properties whenChanged,whenCreated # get AD user – output specific attribute Get-ADUser …
An easy way to enable AD object inheritance using Powershell. This can be used for enabling (or disabling) inheritance on multiple AD objects. #$users = Get-ADUser -ldapfilter “(objectclass=user)” -searchbase “DC=domain,DC=local” $users = get-aduser JohnDo #test with a single user first ForEach($user in $users) { $dn= [ADSI](“LDAP://” + $user) $acl= $dn.psbase.objectSecurity if ($acl.get_AreAccessRulesProtected()) { $isProtected = …
Today’s hot topic is password best practices. As of July 2020 the internet had close to 4.57 Billion active users. Yes, most the of earth’s population at the time. The vast majority of this digital population, if not all, have to manage one or more sets of credentials. That is, a username and a password. …
When we spend two weeks trying to resolve an issue that affects multiple servers it is worth documenting its solution. But not only to jot down a 2 liner, but to clearly lay out a detailed process. This saves our successors time and headaches down the road. Here we discuss Event 36870 Schannel 10001 – …
Event 36870 Schannel 10001 – A fatal error occurred Read More »
We have a Windows 10 virtual machine and we want to extend its disk drive. We extend the disk on the VMware side just fine. But then when we try to extend the volume in the operating system, the Extend Volume option is grayed out. We then try to convert the disk to dynamic but we …