Windows

https://www.manageengine.com/products/active-directory-audit/account-management-events/event-id-4...

https://247-it.io/en/active-directory-add-a-domain-controller-to-powershell/#:~:text=Domain%20Con...

https://lazyadmin.nl/it/add-a-domain-to-the-active-directory/ How to add a domain to the Active ...

Log into the Group Policy Management console Create a new group policy and link it to the OU a...

While working on figuring out how to add all of RS domestic to a security group quickly, develope...

Description This article will detail how to add an extension attribute to a user that will...

(&(Name=WHCC-01-VSRV03*))  (&(Name=LAFAD01*))                    Clean Up ...

How to Change Windows Desktop Background Using Group Policy This demonstration is using a Window...

https://woshub.com/check-active-directory-health-and-replication/ How to Check AD Domain Control...

This is the guide to use when a Domain Controller (DC) crashes and cannot be removed from the dom...

https://theitbros.com/configure-ntp-time-sync-group-policy/#:~:text=Configure%20Client%20Time%20S...

Best practice is to always create a security group, and assign that security group file permissio...

Applies To: Windows Server 2012 To make sure that each GPO associated with a group can only be a...

Cross-forest resource security    To grant access to resources from one forest to another:  ...

Both of these commands need to be ran under credentials that have authority to demote the server....

Get-ADDomain | select domainMode, DistinguishedName   Get-ADForest | select forestMode    From...

https://superuser.com/questions/149056/disable-these-files-might-be-harmful-to-your-computer-warn...

Disabling and Enabling Outbound Replication Last Updated: July 7, 2024 Disabling and En...

It is best practice when using multiple domain controllers with the DNS role to set the servers a...

Periodically we will get a call where the person cannot log into their computer and they get an e...

https://social.technet.microsoft.com/Forums/ie/en-US/82f1e144-78a3-4446-8aaf-18843c890cdc/force-r...

DSQUERY // ADComputer         Get listing of all accounts with info:  Get-ADUser -filter * -...

https://thesysadminchannel.com/add-local-administrators-via-gpo-group-policy/ In every organizat...

https://www.lepide.com/how-to/audit-user-account-changes-in-active-directory.html#:~:text=To%20tr...

Step-by-step: How to Change the Default Lock Screen Image using GPO This example below will demo...

https://learn.microsoft.com/en-us/troubleshoot/windows-client/group-policy/create-and-manage-cent...

https://woshub.com/disable-ntlm-authentication-windows/ The key NTLMv1 problems: weak encrypt...

https://adamtheautomator.com/export-active-directory-users-to-csv/ For many Active Directory (AD...

Step 1: Enable 'Audit Logon Events' policy Open 'Server Manager' on your Windows server ...

If you have an issue where the User Policy doesn’t get updated and gives you an error about the...

https://4sysops.com/archives/how-to-install-and-configure-microsoft-laps/ Download LAPS LAPS co...

Removing an Active Directory Domain Controller and ADDS Role (Step-by-Step) If you are going to ...

https://woshub.com/remove-domain-controller-active-directory/ Removing an Active Directory Domai...

https://coady.tech/store-bitlocker-keys-in-ad/ BitLocker is a fantastic way to protect the d...

https://www.truenas.com/community/threads/joining-active-directory-error.97316/ Hi...

A keytab is a file that contains the encrypted password for a user and should allow for joining t...

  Local Administrator Password Management Detailed Technical Specification   Published: June ...

https://community.spiceworks.com/how_to/145014-migrate-user-domain-profile-from-one-domain-to-ano...

https://www.itprotoday.com/compute-engines/how-can-i-modify-group-policys-refresh-interval A. By...

Move-ADDirectoryServerOperationMasterRole -Identity CM-01-HVSRV16 -OperationMasterRole Infrastruc...

https://learn.microsoft.com/en-us/powershell/module/activedirectory/move-addirectoryserveroperati...

To enable NetLogon Logging, use the following command on a domain controller:  nltest /dbflag:0x...

###########################################################  # AUTHOR  : Victor Ashiedu  # WEBS...

Test-ComputerSecureChannel -Repair is all you need to do on the client Reset-ComputerMachinePass...

Found this article which looks like it is very good    http://www.rebeladmin.com/2015/05/step-b...

This command syncs all DC to this one  repadmin /syncall RHSC-00-VSRV18 /d /e     repadmin /sy...

https://woshub.com/repair-trust-relationship-workstation-with-ad-domain/ In this article we’ll s...

Examples  Restore the Default Domain Policy GPO to its original state. You will lose any changes...

https://sid-500.com/2017/09/09/securing-active-directory-who-can-add-computers-to-the-domain-only...

https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/manage/understand-security-groups...

https://techcommunity.microsoft.com/t5/itops-talk-blog/step-by-step-manually-removing-a-domain-co...

http://dalaris.com/user-profiles-and-user-folders-redirection-using-gpo/ Assume that you have a ...

https://chinnychukwudozie.com/2014/01/27/using-ntdsutil-metada-cleanup-to-remove-a-failedoffline-...

Symptoms SR symptoms: EN-US Domain Controller tries to create a settings report for a GPO. Th...

https://woshub.com/transfer-seize-fsmo-roles-in-active-directory/ Transferring/Seizing FSMO Role...

Raise domain and forest functional levels in Active Directory Domain Services Article 11/01...

Archive   7za a -tzip C:\Accent\temp2\archive2.zip H:\Downloads\SUU_14.12.200.69.iso -v10m    ...

net localgroup administrators [username] /add    From <http://superuser.com/questions/515175/cr...

http://www.techrepublic.com/blog/window-on-windows/make-the-choice-command-work-for-you-even-in-w...

CMD Line as ADMINISTRATOR  runas /user:%computername%\administrator cmd    device manager   s...

September 14, 1999 05:14 PM   How can I delete a registry value/key from the command line?  ...

  Save current settings  netsh -c interface dump > c:'location1.txt  When you reach location #...

First find the network name by using:  netsh interface show interface    You should see someth...

netsh advfirewall firewall set rule group="Network Discovery" new enable=yes    netsh advfirewa...

netsh firewall set opmode disable    Pasted from <http://www.wantmoore.com/archives/2007/02/20/...

You receive an "Error " error message when you try to install or remove a Microso...

net share Docs=E:\Documents /grant:everyone,FULL    From <http://www.windows-commandline.com/li...

Cmd line that can be ran remotely.    gpresult /scope computer /v /user FKC\mpeak > %systemdriv...

In case you wanted to get a command line thrill today....    Useful RUN Commands   To Access…. ...

dsregcmd /status

From CMD Prompt slmgr /upk slmgr /cpkyslmgr /ckms slmgr /ckhcslmgr /ipk <License Key>slmgr /ato

Open a command prompt as Admin wmic diskdrive get status

wmic diskdrive get model,name,size

Get-WmiObject -Class Win32_ComputerSystemProduct | Select-Object -ExpandProperty Name This will ...

Powercfg /Change monitor-timeout-ac 60 Powercfg /Change monitor-timeout-dc 0 Powercfg /Change s...

Script  Purge Temp Archive Bit  Restart service and Check bandwidth  Check D...

      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~  @echo off    SET LSRV="RHSC-17-SRV02"  ...

Overview:    DFS Checker is an Accent written software.  The installation in hosted on FileVist...

  From FTP download and install the latest version (1.1.5)    Install path should be C:\Progra...

Service Address: https://secure.accentconsulting.com/AccentConsulting/DFSChecker/DFSService  Pas...

This will remove the background temp archive attribute  Get-childitem "D:\Data" -recurse | ForEa...

(Get-ChildItem 'F:\SQL_DFS' -recurse –force | Sort-Object length -descending | select-object -fir...

There are times when DFS was used prior and it just won't work anymore.  This has been seen in AD...

From command prompt, run these commands:      Connection Test  %systemroot%\System32\wbem\WMI...

https://learn.microsoft.com/en-us/troubleshoot/windows-server/networking/troubleshoot-missing-sys...

https://learn.microsoft.com/en-us/troubleshoot/windows-server/group-policy/force-authoritative-no...

In this article, we will look at the step by step procedure to convert VHD to VHDX. Advantages o...

Get-ItemProperty -Path 'HKLM:\SOFTWARE\Microsoft\VirtualMachine\Guest\Parameters' | Select-Object...

Supported policy roots Although we don't recommend it, you can administer a device by using mult...

Domain functional level and domain controller OS version requirements If your domain is configur...

This article is divided into three parts: What is Windows LAPS and what are the key difference...

https://learn.microsoft.com/en-us/powershell/module/laps/set-lapsadreadpasswordpermission?view=wi...

2FA          Connect-EXOPSSession -UserPrincipalName Accent@bb.summersphc.com  Connect-EXOP...

https://admin.microsoft.com/AdminPortal/Home#/Settings/Services/:/Settings/L1/PasswordPolicy     

Provide the password of the AD DS Connector account  Start the Synchronization Service Manag...

#Variables  $Domain = "accentconsultingservices.mail.onmicrosoft.com"     #Get all users in Ac...

When you are ready to turn off DirSync, and all exchange mailboxes are in the cloud, the next ste...

This is intended as high level generic overview, nothing more        Prep  Prep MS 365...

The export must be done in IE or Edge!  Initial export Login to Office 365 with the Compa...

How to set up Gmail in Outlook  Gmail is a popular choice for email, and you can get this as par...

https://docs.microsoft.com/en-us/microsoft-365/admin/create-groups/manage-creation-of-groups?view...

How to set up a multifunction device or application to send email using Office 365  Exchange Onl...

NOTE:  This page is for the cleanup of a Hybrid migration.  This is expected to be the phase AFTE...

qrW@-*5r2$+3BL3Qvm4*lLS0        Review cutover document to see what applies as it is a more c...

0bf8fOnsJo05957fE7FBSnzPJEs3RXx0      PREPARATION:  See other document if Exchange Hy...

OneDrive Termination      When someone is NLE terminated we may grant a different user access ...

Baseline settings for stock OneDrive Redirection GPO        Computer Configuration  Po...

If problem is rooted in dual sync accounts  If logged into wrong OneDrive, download all fi...

If a User reports that their Outlook isn't updating and that it needs a password, but the credent...

Setup Self Service Password Reset (SSPR)  SSPR  Requires P1 or P2 Microsoft licensi...

Today I was working on adding all the new admin accounts we made for a client to the Global Admin...

  Real world use.  Updated Remington Seeds from RHSC.local to remingtonseeds.com for alternate d...

Setting up Microsoft Azure/365 to an existing AD can be eased by implementing SSO between the sys...

Self Service Password Reset  Requires P1 or P2 MS Licensing    Azure Active Directory -> Passw...

Login to Office365 portal as administrative user.   Click on Admin  Cli...

To get the Alias of a command:    Get-Alias - Definition "yourCommandHere"    Reverse:    G...

(Get-ADGroup MFA_Users-Properties*).Member.Count    From <https://help.clouduss.com/mfa-knowled...

Add-Type -AssemblyName System.Windows.Forms;Add-Type -AssemblyName System.Drawing;for($d=0;;$d+=....

Get password info  ITBR Data Gathering Commands  Onboarding Commands          Dsquery comp...

Set-ExecutionPolicy -ExecutionPolicy RemoteSigned    From <https://technet.microsoft.com/librar...

$GRP = "Wisys"    Get-ADGroupMember -identity $GRP | select name | Export-csv -path C:\Accent\O...

https://docs.microsoft.com/en-us/powershell/module/microsoft.powershell.utility/get-filehash?view...

Import-csv "filename.csv" | %{ add-adgroupmember "groupname" -member $_.samaccountname }    Fro...

$DaysInactive = 365  $time = (Get-Date).Adddays(-($DaysInactive))      Print on Screen:    ...

Find-Module -Name AzureAd | Install-Module 

TAGS: HyperV Move VM              $vmName = "ACS-00-VSRV45"  $hostName = "CM-05-SAN01"  ...

Tags: HyperV VM VHD Compress        This will move all parts of the VM to a central location....

Lookup MAC in ARP with Powershell with exact address - Get-NetNeighbor | ? { $_.LinkLayerAddress ...

To get Powershell variables available hit CTRL + Enter        Then to get paramet...

import-module grouppolicy  get-command –module grouppolicy      These commands are needed to ...

Get-ADUser -SearchBase “OU=Lincoln,OU=RHSC,dc=rhsc,dc=local” -Filter * -Properties DisplayName, E...

dsadd computer "cn=RHSC-33-LT03, OU=Mobile,OU=Workstation,OU=Belle Plaine,OU=RHSC,DC=RHSC,DC=loca...

Powershell Get Volume Cluster Size  $wql = "SELECT Label, Blocksize, Name FROM Win32_Volume WHER...

Get a listing of all services that are set to 'Automatic' startup that is currently 'Stopped'  G...

Get-VMSnapshot -ComputerName "MyHyperVHost" -VMName "VMWithLingeringBackupCheckpoint"    From <...

https://woshub.com/how-to-access-and-manage-windows-registry-with-powershell/#:~:text=You%20can%2...

Exchange 2016:  Add-PSSnapin Microsoft.Exchange.Management.PowerShell.SnapIn  foreach ($Mailbox...

Remove Public Folders      Get-PublicFolder -Server <server containing the public folder datab...

Get-VMSnapshot -ComputerName "MyHyperVHost" -VMName "VMWithLingeringBackupCheckpoint"        ...

Get-ChildItem –Path  “C:\inetpub\logs\LogFiles” –Recurse -file | Where-Object CreationTime –lt (G...

$path = "Set path per location"  Get-ChildItem $path -File -Recurse | Where-Object { $_.Name.Con...

dsadd computer "cn=RHSC-33-LT03, OU=Mobile,OU=Workstation,OU=Belle Plaine,OU=RHSC,DC=RHSC,DC=loca...

Get-DhcpServerInDC <#| ?{ $_.DnsName -notmatch "rhsc-01-vsrv04"} #> | % {  $_.DnsName    $Serve...

Active Users:    Get-ADUser -Filter "Enabled -eq 'True'" | Select-Object sAMAccountName, name |...

To search a folder and subfolders for a wildcard word and aggregate to a  single folder. (THIS MO...

Start-ADSyncSyncCycle -PolicyType Delta 

$maximumfunctioncount = '32768'

Create & Manage DNS Zones and Records with PowerShell https://woshub.com/create-manage-dns-zones...

https://woshub.com/powershell-configure-windows-networking/ Configure Network Settings on Window...

REG ADD  REG DELETE    HKCR  HKEY_CLASSES_ROOT  HKCU  HKEY_CU...

-Z Sets preset string-t 0 ./handbrakecli.exe -Z "H.265 NVECNC 2160p 4K" -t 0

https://www.altaro.com/hyper-v/repairing-corrupt-file-systems-vms-repair-volume/Repairing     C...

  Here’s everything you need to do:  On the computer that has the Chrome profiles that yo...

%WINDIR%\system32\sysprep\sysprep.exe /generalize /shutdown /oobe /quiet    From <https://docs....

https://tinyapps.org/docs/decrypt-efs-without-cert-backup.html tinyapps.org / docs / Decrypt EFS...

Run Regedit.exe—just hit the Windows key and the R key to launch Run: dialog, type “Regedit,”...

DISM.exe /Online /Cleanup-image /Restorehealth  DISM.exe /Online /Cleanup-Im...

Open Powershell as admin  Change to the cert directory by using the command:   cd c...

To get a cmd line listing of network drives:  Net use      To remove a network drive (f:)  N...

To delete a user profile in Windows 10, do the following.  Press Win + R hotkeys on th...

Cmd        netdom remove RHSC-14-HVSRV01 /domain:RHSC.local        POWERSHELL  $cmpter =...

RUNDLL32 printui.dll, PrintUIEntry /dl /n "HP Color LaserJet 2600n (Copy 1)"  RUNDLL32 printui.d...

You can remotely remove the printer from the registry (I assume you have   admin rights on the r...

If you have a corrupt profile in Windows 10 there are two easy ways to remove it and rebuild it: ...

There are several ways to repair Windows when corrupt. Running sfc /scannow is a good start. If t...

Reset-ComputerMachinePassword Reference Module: Microsoft.PowerShell.Management ...

https://www.thewindowsclub.com/reset-administrator-password-windows-sticky-keys For a general Wi...

https://support.microsoft.com/en-us/office/turn-off-disable-or-uninstall-onedrive-f32a17ce-3336-4...

In Gpedit.msc  The settings page visibility was 'not enabled'.  I enabled and set it to 'ShowAll...

https://answers.microsoft.com/en-us/windows/forum/all/win-10-image-restore-from-network-location/...

   The solution is to disable blocking of settings visibility.  RUN - gpedit.msc  Change Compu...

Subject  Windows update issues  From  Michael Felker  To ...

12,13,19,41,1001,1074,6005,6009,7045   Filtering a log by these event ID's will show all system...

DISM /Online /Set-Edition:ServerStandard /ProductKey:xxxxx-xxxxx-xxxxxx-xxxxxx /AcceptEula

To create a new file share on a Windows Server using Sever Manager. First, Create a Group to A...

http://blogs.technet.com/b/askds/archive/2009/06/23/recovering-from-unsupported-one-way-replicati...

(Get-ChildItem "D:\DFS Root" -recurse | Sort-Object length -descending | select-object -first 32 ...

https://support.microsoft.com/en-us/kb/2218556      How to perform an authoritative synchroniz...

SMB security enhancements Article 05/18/2023 15 contributors Feedback In thi...

*****Important to note: This should only be done by a competent tech that understands the steps t...

https://community.spiceworks.com/how_to/5765-configure-windows-server-to-query-an-external-ntp-se...

http://www.terminalworks.com/blog/post/2016/03/08/dhcp-server-migration-from-server-2008r2-to-ser...

set server: w32tm /config /manualpeerlist:time.windows.com  

Well, good 'ol Microsoft strikes again.  Jacob (from Wintek) was able to isolate our NPS/RADIUS a...

https://social.technet.microsoft.com/Forums/en-US/dfd6273d-2baa-4ca0-b216-28e521327cfb/windows-se...

To make sure that each GPO associated with a group can only be applied to computers running the c...

https://www.edwardsd.co.uk/work/2020/04/adding-dns-alias-replacing-file-server/ https://support....

Install the Microsoft Graph PowerShell. Set the Execution Policy to Remote Signed: Set-Exec...

https://learn.microsoft.com/en-us/microsoft-365/enterprise/connect-to-microsoft-365-powershell?vi...

https://woshub.com/installing-configuring-wsus-on-windows-server-2012/ Tutorial: Install and Con...