Find orphaned GPOs via PowerShell before migrating to Intune

by A.K.common, Microsoft Active DirectoryPosted on No Comments

Many companies have already fully transitioned to Endpoint Management Intune and no longer need GPOs (Group Policy Objects). Others are in the preparatory stages. Therefore, I would like to provide some assistance for identifying orphaned Group Policy Objects. These can be relatively easily found and, if necessary, removed using PowerShell. I’ve written a small script …

Read more “Find orphaned GPOs via PowerShell before migrating to Intune”

PowerShell and AD groups best combination

by A.K.common, Microsoft Active Directory, PowershellPosted on No Comments

In daily life there are a lot situation where you have to copy members of AD groups, or checking if someone is member of an AD group. Therefore I created this blogpost to provide a small assistance doing this tasks via powershell. Function to check user Group Membership Here is a short function checking if …

Read more “PowerShell and AD groups best combination”

Bulk change UserPrincipalName in Active Directory via PowerShell

by A.K.common, Microsoft Active Directory, PowershellPosted on 4 Comments

Getting things ready for cloud migration or anything different, lot’s of companies need to change their users UPNs. As consultant I had to do that several times, therefore I wrote some lines of PowerShell code, to manage this. It’s not that difficult, but for documentation my script also creates a CSV file with the UPNs …

Read more “Bulk change UserPrincipalName in Active Directory via PowerShell”

Windows Server DomainController find LDAP binds

by A.K.common, Microsoft Active Directory, Microsoft active directory, Powershell, securityPosted on 10 Comments

Some time ago Microsoft announced the changing of default domain controller behavior for ldap and ldap signing. See LINK.This affects every supported version of Windows Server (from 2008R2 till 2019). There is another LINK ADV190023 with detailed explanation. I think there should be no discussion to change your domaincontroller to ldap signing only. But what …

Read more “Windows Server DomainController find LDAP binds”

FirstWare DynamicGroup – Part 1: a small tutorial

by A.K.DynamicGroup, FirstWare, Microsoft Active DirectoryPosted on One Comment

Some time ago a company named FirstAttribute asked me to write an blogpost about their outcoming software. So here is the result of my decision ;-). At the beginning I had been a little bit incredulous. After testing some things inside my lab, the software worked pretty fine so I’m glad to write these lines. …

Read more “FirstWare DynamicGroup – Part 1: a small tutorial”