A Drink of Technology for the Thirsty Mind
In this series of three posts, I demonstrate the installation and configuration of Microsoft’s Local Administrator Password Solution (LAPS). This is the second post that covers configuration of Active Directory to support LAPS. Configuring Active Directory for LAPS Extend the AD Schema In the last post, we configured the client installation. While there is no server-side software to run as far […]
Read moreIn this series of three posts, I demonstrate the installation and configuration of Microsoft’s Local Administrator Password Solution (LAPS). This is the third and final post that covers the group policy configuration of LAPS, as well as a brief demonstration. Configuring Group Policy We’ve got the software installed, and AD configured, all that’s left is to turn the thing on! Fortunately there’s […]
Read moreThis Active Directory PowerShell Module code will show you how to the primary SMTP address of users using their SAMACCOUNTNAME. In this scenario, You have a list of users’ SAMACCOUNT name login details and you want to know \ get their email address. In this case, My Users.txt file has a list of users with which looks like this: User1 […]
Read moreIn this article, I’ll show you how to delegate Control In Active Directory and all a specific user to only reset passwords to users. In this case, My client asked me to delegate control In AD to a staff member that will allow him to reset the password to users that locked their AD account. Lucky, Active Directory allows us […]
Read moreA common task many system administrators do is adding computers to an Active Directory domain. Since Active Directory is embedded in so many organizations, nearly every IT professional is probably familiar with the box below. Active Directory domain join This PowerShell snippet above connects remotely to the computer NAMEHERE, attempts to join it to the domain domain.here and then afterward […]
Read moreGroup Policy allows you to add and remove users to an Active Directory (AD) group. Using this feature improves security because you can ensure that high-risk security groups only contain the users that you specify via Group Policy. To manage the Domain Admins group, you will need Remote Server Administration Tools(RSAT) installed. After installing that, open up the Group Policy Management […]
Read moreWhat is Password Replication Policy? Password Replication Policy (PRP) determines which users’ credentials can be cached on a specific RODC. If PRP allows an RODC to cache a user’s credentials, authentication and service ticket activities of that user can be processed by the RODC. If a user’s credentials cannot be cached on an RODC, authentication and service ticket activities are […]
Read moreNow there are several ways that you can remove members from a group. The simplest of all is by using Remove-ADGroupMember. Let us see the examples associated with this cmdlet. Get-Help Remove-ADGroupMember -Examples As you can see in the Examples, we need to know the Members that are part of the group in order to remove them from the group. […]
Read moreIn this article we will be using Powershell to perform this. But be aware that we can do this from Active Directory Users and Computers as well. Let us say that we have a user Ronnie and the description provided for the user is “Ronnie is from the Marketing Team” You can see the below from the Active Directory Users […]
Read more