Clik here to view.
Disabling Windows Update via Group Policy
You can do this via Group Policy via Computer Configuration –> Administrative Templates –> Windows Components –> Windows Update –> Configure Automatic Updates. BUT It seems that Windows...
View ArticleClik here to view.
Getting a list of printers published in an Active Directory domain
So I need to get a list of print servers and printers in the domain. Using Powershell. Looking around the interwebs, I found a PowerShell commandline here which formed the basis of this commandline:...
View ArticleClik here to view.
Network drives were dropping out
Network drives were dropping out. We were also seeing 15+ minutes slow logon times at some remote sites. We’d mostly see the slow logon times with Windows 7. We’d see the “network drives dropping...
View ArticleClik here to view.
So where, oh where is “AGPM.ADM”?
Despite several Microsoft Advanced Group Policy Management pages saying You can centrally configure optional logging and tracing for Advanced Group Policy Management (AGPM) using Administrative...
View ArticleClik here to view.
Getting a list of users in your AD domain via Powershell
Get-ADUser -Filter * -Properties HomeDirectory,LastLogonDate | Select-Object Name, LastLogonDate, HomeDirectory will cause the following to display Name LastLogonDate HomeDirectory ----...
View ArticleClik here to view.
“Index was outside the bounds of the array” error with AGPM
… when trying to edit a Group Policy Preference which uses Item Level Targetting. Using AGPM. The underlying cause it that only AGPM 4.0 SP3 and later clients that support Windows 10. So if you are...
View ArticleClik here to view.
Consolidated list of AGPM resources
The bulk of these links are from the Microsoft Canberra Premier Field Engineering Team Blog November 2015 post. Setup Choosing which Version of AGPM to install Advanced Group Policy Management (Setup...
View ArticleClik here to view.
Saturday Link Roundup–Group Policy, Kerberos, BranchCache
Group Policy Group Policy Notes Group Policy Preferences vs Group Policies |Where to look for policies that have been applied to the user and computer Target Group Policy Preferences by Container, not...
View ArticleClik here to view.
AppLocker, ActiveSetup, Group Policy; all the dumb things
Welcome, strangers, to the showI’m the one who should be lying lowSaw the knives out, turned my backHeard the train coming, stayed out on the trackIn the middle, in the middle, in the middle of a...
View ArticleClik here to view.
AppLocker and applications which install in the users profile directory.
(shout out to: Google Chrome, Mozilla Firefox and Microsoft’s SharePoint Designer) Gee thanks guys. We implemented AppLocker to improve our IT security, and you chaps decided to be clever. The typical...
View ArticleClik here to view.
So what does the Group Policy Preferences Drive Mapping log file contain?
Once you enable the logging via Group Policy, you’ll end up with a log file which contains: Environment variable dump Group Policy settings Drive mapping lists (but not the actual path) If you are like...
View ArticleClik here to view.
Assorted Active Directory things
Powershell Getting a list of users in your AD domain via Powershell Getting a list of printers published in an Active Directory domain Detecting inactive computers in your domain: Get-ADComputer...
View ArticleClik here to view.
Group Policy and WMI Filters–Round 2
This is more of a link dump than anything else. I was asked what I thought of a WMI-related Group Policy change. I don’t much care for them. So I know that WMI Filter queries are a bad idea, but...
View ArticleGetting a list of users in a particular AD Group
Get-ADGroup "<GROUP NAME>" -Properties Member | Select-Object -ExpandProperty Member | Get-ADUSer -properties Displayname,Description,EmailAddress | Select...
View ArticleClik here to view.
The last time my computer was seen on the network …
was something I wrote about 8 years ago, in Detecting inactive computers in your AD domain. So it was time to update that*. Get-ADComputer -Filter * -Properties Name, LastLogonTimeStamp | Select-Object...
View ArticleClik here to view.
Windows 10, Azure AD Join and Password Changes
So we are deploying Workspace One, and our devices are joined to Azure AD. We have found an issue when the user is prompted to change their password. IssueWhen the user is prompted to change their...
View ArticleClik here to view.
AGPM has a new End of Life date
And it’s 14th April 2026. In the meantime it will limp along in Extended Support. Related posts: “Index was outside the bounds of the array” error with AGPM Consolidated list of AGPM resources So...
View ArticleSaturday Link Roundup – Kerberos
Some Kerberos items I looked at lately Stopping Active Directory attacks and other post-exploitation behavior with AMSI and machine learning Detecting Kerberoasting Activity Hunting down DES in order...
View ArticleAccessing Azure Active Directory information via PowerShell
Two ways to do it, via MSOnline module AzureAD module MSOnline First you start with a connection to Azure AD, via Connect-MsolService Then you can run a number of commands against Azure AD. Here is a...
View Article“Delete User Profiles Older Than Certain Number of Days” is broken for us in...
We have a number of “shared” workstations. Which are now running out of drive space, because, even though we have enabled the “Delete user profiles older than a specified number days on system...
View Article