Category: Active Directory 101

How to Delegate Control on Active Directory Windows Server 2016

In this article, I’ll show you how to delegate Control In Active Directory and all a specific user to only reset passwords to users. In this case, My client asked me to delegate control In AD to a staff member that will allow him to reset the password to users that locked their AD account. […]

Read More »

Add a computer to an Active Directory domain with PowerShell

A common task many system administrators do is adding computers to an Active Directory domain. Since Active Directory is embedded in so many organizations, nearly every IT professional is probably familiar with the box below. Active Directory domain join This PowerShell snippet above connects remotely to the computer NAMEHERE, attempts to join it to the […]

Read More »

Add and remove users to AD groups with Group Policy

Group Policy allows you to add and remove users to an Active Directory (AD) group. Using this feature improves security because you can ensure that high-risk security groups only contain the users that you specify via Group Policy. To manage the Domain Admins group, you will need Remote Server Administration Tools(RSAT) installed. After installing that, open […]

Read More »

Configuring Password Replication Policy for Read Only Domain Controllers

What is Password Replication Policy? Password Replication Policy (PRP) determines which users’ credentials can be cached on a specific RODC. If PRP allows an RODC to cache a user’s credentials, authentication and service ticket activities of that user can be processed by the RODC. If a user’s credentials cannot be cached on an RODC, authentication […]

Read More »

Powershell – Remove Members from AD Groups in bulk

Now there are several ways that you can remove members from a group. The simplest of all is by using Remove-ADGroupMember. Let us see the examples associated with this cmdlet. Get-Help Remove-ADGroupMember -Examples As you can see in the Examples, we need to know the Members that are part of the group in order to […]

Read More »

Components of Active Directory Certificate Services

Today we will be seeing the different components of the Active Directory Certificate Services. Each of the components have a specific task to be done and they will be used under various different scenarios. If you have ever installed the Active Directory Certificate Services role, then you must know that there are six different components […]

Read More »

Find Expired Accounts in Active Directory using Powershell

We all know, people join organizations and leave organizations at regular intervals. And we as System Administrators have to create and manage their user accounts in Active Directory. As a best practice, we all set an expiration date to the user account that is created. But do we delete those accounts if they are no […]

Read More »

Find empty groups in Active Directory using PowerShell

Today we will find empty groups in Active Directory using Powershell. You all may know that we as System Administrators are required to create groups in the Active Directory for all sorts of purposes and reasons. But over time, do people who request for these groups really utilise them? It is bound to happen that […]

Read More »

FashionBuzz © 2015 | All Rights Reserved Theme by Flythemes