Currently we a spending most of our time doing Azure Gonvernance projects for customers.This includes DevOpsPipelinesTemplatesand moreManagement/Resource Group StructurePoliciesMonitoringIf you need anything in aboveareas, don’t hesistate to contact us!We can help you get into azure from nothing to production, or help you get control of your azure spending and structure.One of the things we setup is Diagnostics logging in Azure Log Analytics from various resources.This is super easy to setup on all Azure Resources, but it is actually also possible to enable on Azure ADs.Azure AD forwards these logs:AuditLogsSignInLogsThe challenge is that Azure AD is Not a normal Azure resource, [...]
First when I looked in the set of activities, i was surprised that no “Get Group Members” activity exist. After a little playing around i discovered that “Get User” is the activity to use. And i have been using this activity since then. It is pretty simple to setup. 1. Select a connection 2. Set a filter that searches for the group using the Indirect MemberOf filter rule: using above method you can make a simple runbook to empty a AD group of members:
In my previous post I showed how you can install Active Directory Domain Services on Windows Server Core and in this post I´m going to show how you can add an additional Domain Controller to your environment because best practice recommends that you have at least two of them. To add an additional Domain Controller we need to do following: 1. Rename the server 2. Set the IP and DNS address 3. Join the server to domain 4. Install Active Directory Domain Services Server Role 5. Deploy the Domain Controller Before you continue I recommend to read my first [...]
Installing Active Directory Domain Services on Windows Server Core is really easy. You only need to run 8 commands and your Domain Controller is ready. These steps are: 1. Rename the server 2. Set the IP and DNS address 3. Install Active Directory Domain Services Server Role 4. Promote the server to a Domain Controller Let’s Get Started :) I assume that you already have one Windows Server Core installed. If you log in, then it automatically runs command prompt. To get to PowerShell, then just type PowerShell.exe and you are ready to configure your Domain Controller. I don’t like [...]
How to use PowerShell Accelerators, and how to get a complete list of them!
System Center Orchestrator 2012: Active Directory IP – Get User Activity – How to search for Distinguished name!
Cannot figure out how to search for a user via Distinguished name field in the active directory IP for SCORCH 2012? Look no futher, here is the solution.
PowerShell: Creating new users from CSV with password and enabled accounts or How to Pipe into multiple cmdlets
How to create users from a CSV file, set their password and enable them in one command. This method shows you how to pipe the same output into multiple cmdlets by using the ForEach-Object Cmdlet.
UPDATE: New improved script 0.0.3 uploaded. Thanks to Nico_ at Technet Forums! Hello everyone My collegue Michael Petersen, needed a script to move computers to another OU, after re-installing them via SCCM/ConfigMgr. He have written a blog post to show how to use it in a Task Sequence: https://blog.ctglobalservices.com/mip/using-ts-variables-when-running-a-script-under-a-different-account/ therefore i developed this small script All you needs to do is to run it with the CN for the new OU (without the LDAP://) in the commandline like this: cscript.exe MoveOU.vbs "OU=HQ,dc=woodgrovebank,dc=com" [crayon-5d2d66818de4c360695654/]
Download: I had a challenge today. Problem: My Customer needs to insert a specific text in the Computer description field on the local PC, if the user is member of a specific group. Challenges: The problem is that most of the user are not directly members of the group. but they are members of a nested group that if member of the group, or a nested group , that is member of a nested group , that is member of the group and so on. This gave me a problem, since the usual way of checking the user [...]