Script to Create a Report of Members of Privileged Groups

June 9, 2014

This PowerShell script will create a report of users that are members of the following privileged groups: Enterprise Admins Schema Admins Domain Admins Cert Publishers Administrators Account Operators Server Operators Backup Operators Print Operators This is the default list of privileged groups I’ve set, but you can adjust the privileged groups directly within the getForestPrivGroups function if needed. […]

Read the full article →

Script to Create, Import and Export Group Policy WMI Filters

June 9, 2014

This PowerShell script will Create, Import and Export Group Policy WMI Filters. I wrote this script to cover a number of different scenarios: To create a default set of GPO WMI Filters for new builds. To document existing WMI filters for health checks and audits. To provide a mechanism to migrate WMI filters between Dev, […]

Read the full article →

Script to Create a Report on the Primary Groups (primaryGroupID) in Use

May 27, 2014

This PowerShell script will enumerate all user accounts in a Domain and report on the primary groups (primaryGroupID) in use. It will also total up the number of enabled and disabled user accounts that each group is applied to. The output of this script helps with remediation tasks and perhaps even a redesign to implement some standards for the […]

Read the full article →

Script to Generate a Group Policy Object (GPO) Version Report

May 23, 2014

Is there a version match between your Group Policy Object (GPO) containers and templates? This PowerShell script will check that the version of each GPO is consistent in the Active Directory Group Policy Container (GPC) and on each Domain Controller in the Group Policy Template (GPT). All Windows Operating Systems (since Windows 2000) will apply the GPO […]

Read the full article →

Active Directory Health Check, Audit and Remediation Scripts

May 15, 2014

I’ve been doing Active Directory work for many years and as such have a library of hundreds of scripts to assist with health checks, audits, and remediation tasks that I would like to share with the community. But it’s not just a case of providing a script that creates a CSV or screen output, etc, […]

Read the full article →

Fee-Driven Consulting vs Purpose-Driven Consulting

May 14, 2014

This blog was inspired by a post to a LinkedIn group by a gentleman by the name of Jason Thurwanger. I felt that his words could not be wasted in a group so took it upon myself to blog about it. Aside from layout and a couple of grammatical changes I have not modified this […]

Read the full article →

Introducing the new AppDNA Platinum Edition and Goodbye and RIP to the Standalone Editions

March 26, 2014

The Excitement: Last June Citrix included a cut down licensed version of AppDNA as part of the XenDesktop 7 Platinum license. As excited as everyone was at the time, this license was so restrictive that you could only analyse applications using the SBC module. Back then I wrote an article titled “AppDNA is now included with XenDesktop 7 […]

Read the full article →

Script to Create the ADMX Central Store

February 25, 2014

I find it amazing how many Active Directory environments I review that do not have an ADMX Central Store set up. It’s been a best practice since the release of Windows Vista/2008 some 7 years ago now. What I find is that there tends to be ADMX sprawl across management servers and even the workstations […]

Read the full article →

Script to Find Missing Subnets in Active Directory

January 21, 2014

This PowerShell script will collect all Netlogon.log files from the Domain Controllers, export the last x lines and combine it into one file of unique IP Addresses in CSV format. This easily and simply allows you to then identify any missing subnets that need to be added and associated to an Active Directory Site. Yes, there […]

Read the full article →

Script to Create Group Policy Objects and WMI Filters to Manage the Time Server Hierarchy

January 10, 2014

This PowerShell script will create the Time Server GPOs and WMI Filters for the Domain Controllers to ensure your time server hierarchy remains correct for transfer and seizure of the PDC emulator FSMO role holder. However, before I talk about the script it’s important to provide some background information on the required settings for the Windows Time […]

Read the full article →

← Previous Entries

Next Entries →