PowerShell

Script to Create an Active Directory Schema Update Report

June 22, 2014

This PowerShell script was written by the awesome Ashley McGlone (AKA Goatee PFE) and published to the TechNet Script Center. It was also blogged on the Scriting Guy TechNet site. However, it did need some updates to keep up with the newer schema updates as well as adding the SCCM (ConfigMgr) versions. As Ashley has […]

Read the full article →

Script to Create an Overview of all Computer Objects in a Domain

June 22, 2014

This PowerShell script will provide an overview and count of all computer objects in a domain based on Operating System and Service Pack. It helps an organisation to understand the number of stale and active computers against the different types of operating systems deployed in their environment. Computer objects are filtered into 4 categories: Windows Servers […]

Read the full article →

Script to Create a Report of Members of Privileged Groups

June 9, 2014

This PowerShell script will create a report of users that are members of the following privileged groups: Enterprise Admins Schema Admins Domain Admins Cert Publishers Administrators Account Operators Server Operators Backup Operators Print Operators This is the default list of privileged groups I’ve set, but you can adjust the privileged groups directly within the getForestPrivGroups function if needed. […]

Read the full article →

Script to Create, Import and Export Group Policy WMI Filters

June 9, 2014

This PowerShell script will Create, Import and Export Group Policy WMI Filters. I wrote this script to cover a number of different scenarios: To create a default set of GPO WMI Filters for new builds. To document existing WMI filters for health checks and audits. To provide a mechanism to migrate WMI filters between Dev, […]

Read the full article →

Script to Create a Report on the Primary Groups (primaryGroupID) in Use

May 27, 2014

This PowerShell script will enumerate all user accounts in a Domain and report on the primary groups (primaryGroupID) in use. It will also total up the number of enabled and disabled user accounts that each group is applied to. The output of this script helps with remediation tasks and perhaps even a redesign to implement some standards for the […]

Read the full article →

Script to Generate a Group Policy Object (GPO) Version Report

May 23, 2014

Is there a version match between your Group Policy Object (GPO) containers and templates? This PowerShell script will check that the version of each GPO is consistent in the Active Directory Group Policy Container (GPC) and on each Domain Controller in the Group Policy Template (GPT). All Windows Operating Systems (since Windows 2000) will apply the GPO […]

Read the full article →

Active Directory Health Check, Audit and Remediation Scripts

May 15, 2014

I’ve been doing Active Directory work for many years and as such have a library of hundreds of scripts to assist with health checks, audits, and remediation tasks that I would like to share with the community. But it’s not just a case of providing a script that creates a CSV or screen output, etc, […]

Read the full article →

Script to create a Kerberos Token Size Report

December 20, 2013

SCRIPT UPDATED 22nd September 2017 This PowerShell script will enumerate all user accounts in a Domain, calculate their estimated Token Size and create a report of the top x users in CSV format. However, before I talk about the script it’s important to provide some background information on Kerberos token size; how to calculate it; and […]

Read the full article →

Next Entries →