Quantcast
Channel: Active Directory – wisefaq.com
Browsing latest articles
Browse All 28 View Live

Image may be NSFW.
Clik here to view.

Disabling Windows Update via Group Policy

You can do this via Group Policy via Computer Configuration –> Administrative Templates –> Windows Components –> Windows Update –> Configure Automatic Updates. BUT It seems that Windows...

View Article


Image may be NSFW.
Clik here to view.

Getting a list of printers published in an Active Directory domain

So I need to get a list of print servers and printers in the domain. Using Powershell. Looking around the interwebs, I found a PowerShell commandline here which formed the basis of this commandline:...

View Article


Image may be NSFW.
Clik here to view.

Network drives were dropping out

Network drives were dropping out.  We were also seeing 15+ minutes slow logon times at some remote sites. We’d mostly see the slow logon times with Windows 7.  We’d see the “network drives dropping...

View Article

Image may be NSFW.
Clik here to view.

So where, oh where is “AGPM.ADM”?

Despite several Microsoft Advanced Group Policy Management pages saying You can centrally configure optional logging and tracing for Advanced Group Policy Management (AGPM) using Administrative...

View Article

Image may be NSFW.
Clik here to view.

Getting a list of users in your AD domain via Powershell

Get-ADUser -Filter * -Properties HomeDirectory,LastLogonDate | Select-Object Name, LastLogonDate, HomeDirectory will cause the following to display Name       LastLogonDate          HomeDirectory ----...

View Article


Image may be NSFW.
Clik here to view.

“Index was outside the bounds of the array” error with AGPM

… when trying to edit a Group Policy Preference which uses Item Level Targetting. Using AGPM. The underlying cause it that only AGPM 4.0 SP3 and later clients that support Windows 10.  So if you are...

View Article

Image may be NSFW.
Clik here to view.

Consolidated list of AGPM resources

The bulk of these links are from the Microsoft Canberra Premier Field Engineering Team Blog November 2015 post. Setup Choosing which Version of AGPM to install Advanced Group Policy Management (Setup...

View Article

Image may be NSFW.
Clik here to view.

Saturday Link Roundup–Group Policy, Kerberos, BranchCache

Group Policy Group Policy Notes Group Policy Preferences vs Group Policies |Where to look for policies that have been applied to the user and computer Target Group Policy Preferences by Container, not...

View Article


Image may be NSFW.
Clik here to view.

AppLocker, ActiveSetup, Group Policy; all the dumb things

Welcome, strangers, to the showI’m the one who should be lying lowSaw the knives out, turned my backHeard the train coming, stayed out on the trackIn the middle, in the middle, in the middle of a...

View Article


Image may be NSFW.
Clik here to view.

AppLocker and applications which install in the users profile directory.

(shout out to: Google Chrome, Mozilla Firefox and Microsoft’s SharePoint Designer) Gee thanks guys. We implemented AppLocker to improve our IT security, and you chaps decided to be clever.  The typical...

View Article

Image may be NSFW.
Clik here to view.

So what does the Group Policy Preferences Drive Mapping log file contain?

Once you enable the logging via Group Policy, you’ll end up with a log file which contains: Environment variable dump Group Policy settings Drive mapping lists (but not the actual path) If you are like...

View Article

Image may be NSFW.
Clik here to view.

Assorted Active Directory things

Powershell Getting a list of users in your AD domain via Powershell Getting a list of printers published in an Active Directory domain Detecting inactive computers in your domain: Get-ADComputer...

View Article

Image may be NSFW.
Clik here to view.

Group Policy and WMI Filters–Round 2

This is more of a link dump than anything else.  I was asked what I thought of a WMI-related Group Policy change. I don’t much care for them. So I know that WMI Filter queries are a bad idea, but...

View Article


Getting a list of users in a particular AD Group

Get-ADGroup "<GROUP NAME>" -Properties Member | Select-Object -ExpandProperty Member | Get-ADUSer -properties Displayname,Description,EmailAddress | Select...

View Article

Image may be NSFW.
Clik here to view.

The last time my computer was seen on the network …

was something I wrote about 8 years ago, in Detecting inactive computers in your AD domain. So it was time to update that*. Get-ADComputer -Filter * -Properties Name, LastLogonTimeStamp | Select-Object...

View Article


Image may be NSFW.
Clik here to view.

Windows 10, Azure AD Join and Password Changes

So we are deploying Workspace One, and our devices are joined to Azure AD.  We have found an issue when the user is prompted to change their password. IssueWhen the user is prompted to change their...

View Article

Image may be NSFW.
Clik here to view.

AGPM has a new End of Life date

And it’s 14th April 2026. In the meantime it will limp along in Extended Support. Related posts: “Index was outside the bounds of the array” error with AGPM Consolidated list of AGPM resources So...

View Article


Saturday Link Roundup – Kerberos

Some Kerberos items I looked at lately Stopping Active Directory attacks and other post-exploitation behavior with AMSI and machine learning Detecting Kerberoasting Activity Hunting down DES in order...

View Article

Accessing Azure Active Directory information via PowerShell

Two ways to do it, via MSOnline module AzureAD module MSOnline First you start with a connection to Azure AD, via Connect-MsolService Then you can run a number of commands against Azure AD.  Here is a...

View Article

“Delete User Profiles Older Than Certain Number of Days” is broken for us in...

We have a number of “shared” workstations.  Which are now running out of drive space, because, even though we have enabled the “Delete user profiles older than a specified number days on system...

View Article
Browsing latest articles
Browse All 28 View Live