Posts tagged with "Active-Directory"
Visualizing and Analyzing Windows Folder Permissions
A comprehensive guide to exporting and visualizing Windows folder permissions using PowerShell and Python, including treemap visualizations of user access rights.
Published: June 1, 2024 | Last Modified: May 13, 2025Troubleshooting Group Policy Objects (GPOs)
A collection of useful commands and steps for troubleshooting Group Policy Objects (GPOs) in a Windows Active Directory environment.
Published: May 31, 2024 | Last Modified: May 13, 2025Active Directory User Lockout and Password Report
A PowerShell script that generates an HTML diagnostics report for user lockouts in Active Directory, including password age, expiration details, and account status.
Published: May 30, 2024 | Last Modified: May 13, 2025Join a Workstation to Active Directory with Shell and PowerShell
A comparison of efficient one-liner commands in both Shell and PowerShell for joining workstations to Active Directory domains with proper credential handling and automatic restart functionality.
Published: July 13, 2023 | Last Modified: May 13, 2025Windows ACL Management with PowerShell
A comprehensive collection of PowerShell scripts for managing Windows Access Control Lists (ACLs), including permission enumeration, modification, and analysis tools with detailed permission descriptions.
Published: May 2, 2023 | Last Modified: May 13, 2025Managing Global Address List (GAL) Visibility with PowerShell
A comprehensive guide to managing user visibility in the Global Address List (GAL) using PowerShell, covering both on-premises Active Directory and Exchange Online environments with detailed scripts for checking and modifying the msExchHideFromAddressLists attribute.
Published: April 5, 2023 | Last Modified: May 13, 2025Microsoft LAPS (Local Administrator Password Solution) Guide
Microsoft LAPS (Local Administrator Password Solution) is a tool designed to securely manage local administrator account passwords on Windows domain-joined computers. It automates password generation and rotation, and stores passwords in a secure manner, providing greater control and security over local accounts.
Published: February 23, 2023 | Last Modified: May 13, 2025PowerShell Script for Azure AD Synchronization Management
This PowerShell script performs the following actions:
- It retrieves the Windows identity and security principal of the current user account.
- It then retrieves the security principal for the Administrator role.
- It checks if the current user is running as an administrator. If the user is not running as an administrator, the script relaunches itself as an elevated process.
- If the user is running as an administrator, the script displays a menu with three options: “Delta Sync”, “Full Sync”, and “Exit”. The user is prompted to select an option by entering the corresponding number.
- Based on the user’s selection, the script runs the appropriate command using the Start-ADSyncSyncCycle cmdlet with either the Delta or Initial policy type. If the user selects “Exit”, the script exits.
- Finally, the script displays a message indicating that it is running and to check the “miisclient” to confirm. It then pauses for 10 seconds using the Start-Sleep cmdlet.
$myWindowsID = [System.Security.Principal.WindowsIdentity]::GetCurrent()
$myWindowsPrincipal = New-Object System.Security.Principal.WindowsPrincipal($myWindowsID)
$adminRole = [System.Security.Principal.WindowsBuiltInRole]::Administrator
if (-not $myWindowsPrincipal.IsInRole($adminRole)) {
$newProcess = New-Object System.Diagnostics.ProcessStartInfo "PowerShell"
$newProcess.Arguments = $myInvocation.MyCommand.Definition
$newProcess.Verb = "runas"
[System.Diagnostics.Process]::Start($newProcess)
exit
}
Write-Host '1) Delta Sync (Recommended, unless told to do a full sync)'
Write-Host '2) Full Sync'
Write-Host '3) Exit'
$selected_menu_item = Read-Host 'Which number would you like to run (1 or 2)? (Enter Number and Press Enter)'
switch ($selected_menu_item) {
1 { Start-ADSyncSyncCycle -PolicyType Delta }
2 { Start-ADSyncSyncCycle -PolicyType Initial }
3 { Write-Host 'Exit'; exit }
default { Write-Host 'Incorrect Input' -ForegroundColor Red }
}
Write-Host 'Running Now.... Check miisclient to confirm'
Start-Sleep -s 10
Combining PowerShell Cmdlets
A PowerShell script demonstrating the integration of ExchangeOnlineManagement and AzureAD modules to generate comprehensive email troubleshooting reports by correlating data through UserPrincipalName matching.
Published: November 17, 2021 | Last Modified: May 13, 2025Get Group Membership
PowerShell scripts for extracting and reporting group membership information from both on-premises Active Directory and Azure AD, featuring progress tracking and CSV export functionality.
Published: September 16, 2021 | Last Modified: May 13, 2025