In a large enterprise an admin would need to keep track of all the domains in a AD forest, the domain names, the domain controllers (DC) , their IPs, and what FSMO roles does a DC hold. Wrote a little script to just do that…
Category: PowerShell
Get Inactive Users Report for the past 60 days in a multi domain environment
I had a request recently to provide an inactive user report for the past 60 days. Basically, find out which accounts have not logged in for the past 60 days so action can be taken against them. The request was for a multi domain forest which queries every domain controller and gets the latest lastlogon…
Get Primary, Secondary, Tertiary DNS values and more from Multiple Servers
Came across a unique request to get primary, secondary, and tertiary DNS values for multiple computers/servers across the domain. I started writing the script and got what I wanted. Now this started off as just to query for DNS Server information, but then I thought to add other pieces to get myself a good Network…
Fix Active Directory broken security inheritance problem
Ran into a situation at a client location where in Active Directory, the security permissions applied to an OU were not getting inherited permissions on to the objects. Basically, security inheritance was broken.This causes a problem when the administrative accounts or groups needing to modify an attribute on the AD object throw errors, or are…
Get All DCs in the Entire Forest
Getting a know a new environment for a new client and I a quickly needed information about all domain controllers in the entire forest. Wrote a small little script to provide me all the information I needed:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 |
Import-Module ActiveDirectory function Get-AllDCsInForest{ [CmdletBinding()] param( [string]$ReferenceDomain = $env:USERDOMAIN ) $ForestObj = Get-ADForest -Server $ReferenceDomain foreach($Domain in $ForestObj.Domains) { Get-ADDomainController -Filter * -Server $Domain | select Domain,HostName,Site, IPv4Address, OperatingSystem, OperatingSystemVersion } } Get-AllDCsInForest| Export-Csv -Path C:\Scripts\AllDcs.txt -NoTypeInformation |
Convert a Dynamic IP to Static
Working on a project where on some servers the DHCP assigned addresses needs to be converted to static. Since there is always more than one…I needed to script it. Here is a quick way to do it via PowerShell.
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 |
#SwitchIPtoStatic.ps1 #Get All the adapters that are on the Server $adapters = gwmi -cl win32_networkadapterconfiguration | ? {($_.ipaddress) -and $_.dhcpEnabled -eq 'True' } foreach ($adapter in $adapters) { # Get original settings $ipAddress = $adapter.IPAddress $subnetMask = $adapter.IPSubnet $dnsServers = $adapter.DNSServerSearchOrder $defaultGateway = $adapter.DefaultIPGateway # Set to static and set dns and gateway: $adapter.EnableStatic($ipAddress,$subnetMask) $adapter.SetDNSServerSearchOrder($dnsServers) $adapter.SetGateways($defaultGateway) } |
Hope this helps!
Force Replication of all Domain Controllers on all Sites
If you want to replicate all Domain Controllers, then you have to start replication on each of them separately. This may take a while. To save time there is an easier way to force replication on all Domain Controllers of all Active Directory Sites. Log on to one of your Domain Controllers. Start Windows PowerShell…
Get .Net Framework Version for the .DLL & .EXE files
Working with many app/dev teams it is hard to find which version of Dot Net an application was designed or made in. Now if your application server has multiple drives and depending on which drive the application resides it may be hard to find this information. Let’s assume there are two drives C: and D:….
Provisioning a New Office 365 User and Mailbox from Exchange Hybrid via PowerShell
Working with many Office365 clients, I receive queries on how to go about provisioning users and mailboxes for an Exchange hybrid deployment. To begin with, let’s assume a couple things. We have a Windows 2012 R2 member server with Azure AD Connect (AAD Connect) version 1.1.105.00 (or newer) and the Azure AD Module for PowerShell installed;…
Add Alternate Email Address or Recovery Email Address for Office365 Administrator
In Office365, depending on the admin role of an account you may want to add an alternate email address for password recovery. This is a basically a self-service password reset for Administrators of Office365. Quick way to do this is with PowerShell:
|
1 2 3 4 5 6 7 8 9 10 11 12 |
#Connect to Office365 Import-Module MSOnline Connect-MsolService $O365Cred = Get-Credential $O365Session = New-PSSession –ConfigurationName Microsoft.Exchange -ConnectionUri https://ps.outlook.com/powershell -Credential $O365Cred -Authentication Basic -AllowRedirection Import-PSSession $O365Session #Check if the user has an Alternate Email Address (Recovery Address) Get-MsolUser -UserPrincipalName mwasay@domain.com | select -ExpandProperty AlternateEmailaddresses #Check if the user has an Alternate Email Address (Recovery Address) Set-MsolUser -UserPrincipalName mwasay@domain.com -AlternateEmailAddresses mwasay@domain2.com |
If this setting is unset for an administrator, Office365 gives you a…