tags
ad
22 entries
20 entries
Active Directory – The directory service was unable to allocate a relative identifier
I’ve been testing Disaster Recovery scenario restoring Active Directory. One of the servers was restored, and it worked for a moment after…
Finding duplicate DNS entries using PowerShell
Today’s blog post is about Active Directory-integrated DNS and how to find duplicate entries. By duplicate, I mean those where one DNS name…
Finding duplicate SPN with PowerShell
Duplicate SPNs aren’t very common but can happen in any Active Directory as there’s no built-in way that tracks and prevent duplicate SPN’s…
Fixing Active Directory PasswordNotRequired with PowerShell
There was I, deploying PSPasswordExpiryNotifications for one of my Clients when I started getting complaints that some users are not gettin…
Get-EventsLibrary.ps1 – Monitoring Events PowerShell
This event library (Get-EventsLibrary.ps1) is PowerShell script that parses Security (mostly) logs on Domain Controllers. It has few report…
Getting Bitlocker and LAPS summary report with PowerShell
Having Bitlocker and LAPS in modern Active Directory is a must. But just because you enable GPO and have a process that should say Bitlocke…
How to find different server types in Active Directory with PowerShell
Working as a freelancer is a great thing if you can handle it. Each day, each week something new happens and a new problem shows up on my d…
Instant Replication between Active Directory sites with PowerShell
In Active Directory when you change something, it’s replicated to other Domain Controllers regularly. It’s a standard procedure that happen…
Just different approach to Active Directory Password Notifications
A long time ago I’ve maintained a C# version of Password Expiry reminders. It was working based on HTML templates…
Mastering Active Directory Hygiene: Automating Stale Computer Cleanup with CleanupMonster
Have you ever looked at your Active Directory and wondered, “Why do I still have computers listed that haven’t been turned on since World C…
Monitoring LDAPS connectivity/certificate with PowerShell
Some time ago, I wrote a blog post on checking for LDAP, LDAPS, LDAP GC, and LDAPS GC ports with PowerShell. It mostly works, but it requir…
PSWinDocumentation – Audit Active Directory Passwords
If you’re paying attention to what’s happening around the world now you probably know Have I Been Pwned service by now. You probably know t…
PSWinDocumentation – Version 0.1 with Word / Excel export
A few weeks ago I’ve released my first version of PSWinDocumentation. It was simple, one command module where you start it and get some bas…
PSWinReporting 1.0 – Monitoring Active Directrory Events
Few months after initial release a new public version of PSWinReporting 1.0 is released. While the name might not be…
Report Active Directory Accounts that are Synchronized with Azure AD
I was scrolling X (aka Twitter) today and saw this blog post, “PowerShell: Report On-Premises Active Directory Accounts that are Synchroniz…
Reporting group membership for critical Active Directory groups
I work a lot with Active Directory-related tasks. One of the tasks is to know the group membership of critical Active Directory Groups such…
Strengthening Password Security in Active Directory: A PowerShell-Powered Approach
PasswordSolution uses the DSInternals PowerShell module to gather Active Directory hashes and then combines that data into a prettified rep…
Synchronizing Active Directory with External Time Source
One of the crucial parts in modern IT world is proper time and date. While it may seem that 30…
The only PowerShell Command you will ever need to find out who did what in Active Directory
While the title of this blog may be a bit exaggeration, the command I’m trying to show here does it’s best to deliver on the promise. What…
Using Win32_UserAccount WMI filter in PowerShell/Group Policies and what to avoid
Some months ago, I created PowerShell Script to create local administrative users on workstations – Create a local user or administrator ac…