PowerShell Inventory Operating Systems in Active Directory
PowerShell Inventory KB ID 0001838 Problem I needed to get a list of operating systems ‘in-use’ in my active directory this week. bear in mind this will pull information from all enables computer accounts in AD, so if you are ‘not good’ at tidying out old machines and servers you might get a lot of garbage in your output! Solution: PowerShell Inventory Use the following PowerShell. Get-ADComputer -Filter...
There Is No Editor Registered To Handle This Attribute Type
KB ID 0001837 Problem If you attempt to edit the authOrig attribute of a mail enabled group using ADSIedit you will get the following error. There is no editor registered to handle this attribute type. Why would you be doing this? This is done when you want to restrict who can email a group. Solution If you are running either on-premises Microsoft Exchange (or are running in Hybrid Exchange mode, and have retained an Exchange server...
Delegate LAPS Administration
LAPS Administration KB ID 0001834 Problem I saw this asked on a forum this morning and, went to test the answer (and create an article if successful), to find out the posted answer and most of the info I found online was for Microsoft LAPS and not the newer Windows LAPS. Windows LAPS Laps Administration Let’s say we have an OU called Computers (with my computers in) and I want to grant read permissions to LAPS password to a security...
Windows Remote VPN no DNS
VPN no DNS KB ID 0001402 Problem I’ve been setting up a VPN solution on the test bench as I’m looking at Always On VPN. When I noticed that I had a problem with my remote VPN connections on Windows. They would connect fine but I could not resolve any FQDNs for my domain? VPN no DNS Solution By default, all (Windows) VPN connections are ‘Force Tunnel’ (this means they have the option ‘Use default gateway...
Windows: Copy User Membership to Another User
Copy User Membership KB ID 0001828 Problem If you have a lot of user groups and simply want to copy/clone one users group membership to another user, then with PowerShell that’s quite simple to do. Solution: Copy User Membership Here I have two users ALane who is a member of a few groups and APatel who is simply a member of domain admins. Although we can see above what groups ALane is a member off let’s prove that will...
Deny RDS
Deny RDS KB ID 0001825 Problem Way back when I started doing tech (in the days of Novell 4 and NT4), my mantra was, if you must deny something then you’ve done something wrong. Now I work for a UK based MSP that offers SPLA licensing to clients. Unlike typical RDS licensing, With SPLA this requires every ‘capable’ AD user that ‘can’ RDP onto a server (regardless of it’s a Session Host RDS Server or...