PowerShell: Setting Azure Active Directory Diagnostics Forwarding

Currently we a spending most of our time doing Azure Gonvernance projects for customers.This includes DevOpsPipelinesTemplatesand moreManagement/Resource Group StructurePoliciesMonitoringIf you need anything in aboveareas, don’t hesistate to contact us!We can help you get into azure from nothing to production, or help you get control of your azure spending and structure.One of the things we setup is Diagnostics logging in Azure Log Analytics from various resources.This is super easy to setup on all Azure Resources, but it is actually also possible to enable on Azure ADs.Azure AD forwards these logs:AuditLogsSignInLogsThe challenge is that Azure AD is Not  a normal Azure resource, [...]

By |2019-02-19T11:30:37+01:00februar 19th, 2019|Automation, Azure, Monitoring, Powershell|3 Comments

SCO 2012: Get Active Directory Group members using Get User Activity

  First when I looked in the set of activities, i was surprised that no “Get Group Members” activity exist. After a little playing around i discovered that “Get User” is the activity to use. And i have been using this activity since then.   It is pretty simple to setup.   1. Select a connection 2. Set a filter that searches for the group using the Indirect MemberOf filter rule:   using above method you can make a simple runbook to empty a AD group of members:  

By |2014-06-24T14:02:11+01:00juni 24th, 2014|Automation|11 Comments

Installing a Domain Controller on Windows Server 2012 R2 Core

In my previous post I showed how you can install Active Directory Domain Services on Windows Server Core and in this post I´m going to show how you can add an additional Domain Controller to your environment because best practice recommends that you have at least two of them. To add an additional Domain Controller we need to do following: 1. Rename the server 2. Set the IP and DNS address 3. Join the server to domain 4. Install Active Directory Domain Services Server Role 5. Deploy the Domain Controller   Before you continue I recommend to read my first [...]

By |2014-01-21T14:18:27+01:00januar 21st, 2014|Powershell, Windows Server|2 Comments

Installing Active Directory Domain Services on Windows Server 2012 R2 Core

Installing Active Directory Domain Services on Windows Server Core is really easy. You only need to run 8 commands and your Domain Controller is ready. These steps are: 1. Rename the server 2. Set the IP and DNS address 3. Install Active Directory Domain Services Server Role 4. Promote the server to a Domain Controller Let’s Get Started :) I assume that you already have one Windows Server Core installed. If you log in, then it automatically runs command prompt. To get to PowerShell, then just type PowerShell.exe and you are ready to configure your Domain Controller. I don’t like [...]

By |2014-01-21T11:56:47+01:00januar 21st, 2014|Windows Server|12 Comments

VBScript: Move computer object to another OU via Command line parameter

[download id="19"] UPDATE: New improved script 0.0.3 uploaded. Thanks to Nico_ at Technet Forums! Hello everyone My collegue Michael Petersen, needed a script to move computers to another OU, after re-installing them via SCCM/ConfigMgr. He have written a blog post to show how to use it in a Task Sequence: https://blog.ctglobalservices.com/mip/using-ts-variables-when-running-a-script-under-a-different-account/ therefore i developed this small script All you needs to do is to run it with the CN for the new OU (without the LDAP://) in the commandline like this: cscript.exe MoveOU.vbs "OU=HQ,dc=woodgrovebank,dc=com" ' //*************************************************************************** ' //*************************************************************************** ' // ***** Script Header ***** ' // ' // Solution: ConfigMgr [...]

By |2010-03-17T16:30:33+01:00marts 17th, 2010|Scripting & Development|75 Comments

Checking if User is member of group including nested/sub groups!

Download: [download#4#size#nohits] I had a challenge today. Problem: My Customer needs to insert a specific text in the Computer description field on the local PC, if the user is member of a specific group. Challenges: The problem is that most of the user are not directly members of the group. but they are members of a nested group that if member of the group, or a nested group , that is member of a nested group , that is member of the group and so on. This gave me a problem, since the usual way of checking the user membership [...]

By |2008-12-01T12:41:43+01:00december 1st, 2008|Scripting & Development|8 Comments