Tag Archives: active directory

Collect user and group SIDs and names from Active Directory

Ever found yourself looking through the Access Control List of a file/folder/share and mixed in along with the group names (hopefully not user names!) you see some SIDs? These look something like S-1-5-21-0123456789-0123456789-0123456789-0123. These are the Security IDs of deleted … Continue reading

Rate this:

Posted in PowerShell, Security, Windows | Tagged , , , , , , | Leave a comment

Extract private key from Microsoft CA-issued certificate

I wanted to use my internal Active Directory Certificate Services server to create a certificate for a Synology NAS. The Synology needs the private key and the certificate to be in separate files. I created the certificate by using the … Continue reading

Rate this:

Posted in Security, Storage | Tagged , , , , , , , , , , , , | Leave a comment

List All Domain Controllers and roles with PowerShell

New job, new infrastructure, and I needed a way to quickly find out what Active Directory Domain Controllers were present, where they were located, and what roles and functions they all performed. So I wrote this simple script to do … Continue reading

Rate this:

Posted in PowerShell | Tagged , , , , , , , , , , , , , , | 1 Comment

Send Windows Event Logs to SQL Database

I’m currently in the process of planning for an AppLocker rollout to all my PCs (about 7,500 of them) due to an increasing amount of malware. You should probably be doing this too. Anyway, a sensible first step is to … Continue reading

Rate this:

Posted in PowerShell, Scripting, Security, Windows | Tagged , , , , , , , , , , , , , , , , , , , , , , , | 1 Comment

Using Group Policy WMI Filters with examples

WMI Filters exist at the bottom on the Group Policy Management Console and are a way to target Group Policy Objects (GPOs) based on the results of the WMI query. Other ways of targeting GPOs are by the OU that it … Continue reading

Rate this:

Posted in Windows | Tagged , , , , , , , , , , , , , , , , , , , , | Leave a comment

PowerShell: Add users to Active Directory

Quickie script to add a load of users to Active Directory. This was to generate a set of test users, so the account settings are rather scarce. You have to convert the password text string to data type System.Security.SecureString, which I’m … Continue reading

Rate this:

Posted in PowerShell | Tagged , , , , , , , , , , , , , | Leave a comment

Active Directory Dynamic DNS broken by Juniper SRX firewall ALG

Last week a Juniper SRX firewall was put in to replace an older internal firewall. This week a load of Windows Servers dropped out of Active Directory DNS. The scavenging period in AD DNS was configured to be 7 days. Coincidence? I … Continue reading

Rate this:

Posted in Networking, Windows | Tagged , , , , , , , , , , , , , , , , , , , , | Leave a comment

PowerShell: Get AD attributes

A while back I posted a script to monitor Active Directory LDAP response times. As part of this I had a chunk of code that not only did an LDAP lookup, but also pulled all the AD attributes into a … Continue reading

Rate this:

Posted in PowerShell | Tagged , , , , , , , | Leave a comment

Free Active Directory and Exchange 2013 knowledge from Veeam

Just found the following free stuff from Veeam, which both sound good: Active Directory Expert Series [From Physical to Virtual] “Get the jumpstart on Active Directory: how to set it up, virtualize and ensure availability. Master backing up and restoring … Continue reading

Rate this:

Posted in Free training, Windows | Tagged , , , , , , , | Leave a comment

PowerShell LDAP response time monitor

I recently had some issues with a system not getting very response times to LDAP queries sent to various Active Directory domain controllers. These were resolved via a combination of Windows Server 2003 Server Performance Advisor and the built in, … Continue reading

Rate this:

Posted in Performance, PowerShell, Windows | Tagged , , , , , , , , , , , , , | 1 Comment