Ramblings, ideas, problems, and solutions

Tag: PowerShell

  • Verify what RSAT features are installed

    Before summer, I showed you how to install ADUC using PowerShell. ADUC, however, is not the only tool in the RSAT toolbox. Here, then, is how you can get an overview of all of them, as well as whether or not they are installed on the computer:

    (more…)

  • Installing ADUC from PowerShell

    With some frequency, I have users contacting me to have ADUC (Active Directory Users and Computers) installed on their computers. While you can simply install RSAT from Apps & Features, doing so would be overkill and a half. Much better, then, to simply install ADUC and be done with it. This is easily done using PowerShell. Here’s how:

    (more…)

  • PowerShell: Looking up specific user properties

    Many of my customers use specific properties for various things. Most users do not have ADUC installed, and some of our customers even disallow installation of ADUC on end user computers. I recently had a user ask about looking up the contents of a specific attribute (extensionAttribute6, in case you were wondering).

    (more…)

  • PowerShell: Finding host name from IP address

    In tech support, resolving IP addresses to host names can be something you do on a relatively frequent basis. While I’ve always used the CLI ping command with the -a option, I have also been working towards higher proficiency in PowerShell. Frankly, for a single IP address, I prefer sticking with CLI. When working with a number of addresses, however, it gets a lot more interesting.

    (more…)

  • PowerShell: Return multiple specific properties

    The script I described a few weeks ago for finding all members of several groups is serving me very well indeed. I was recently asked to provide both the display name and the login name for each member in the group. This was readily achieved by modifying the script slightly. The rest of the script remains the same, so I will leave that well enough alone, and start with the following snippet: Get-ADGroupMember $Group -recursive | Get-ADUser -property Displayname | select Displayname

    (more…)

  • PowerShell: “Some or all identity references could not be translated”

    For a whole host of reasons we use scripts to create access controlled file shares, and to create the Active Directory groups that control access to them. Not only is it easier than doing it manually, it also ensures that the group is created in the correct place, that permissions are set correctly, and that it follows our naming convention. It helps prevent errors and improve the quality of our work, as well as allowing us to push the task right out to our tier one techs, as I described when discussing the ticket cost funnel a while back.

    (more…)

  • Powershell: A script to find all members of several groups refined

    One of the scripts that I use most often is the one I wrote about back in September of 2019. Usually, I only run it for up to ten or so groups, so it’s not a big problem to simply swap out the group name, rince and repeat. Recently, however, I needed to run it for more than five hundred groups. The sheer amount of data makes that a very different proposition.

    (more…)

  • Powershell: Add user to multiple groups

    A while back, I had a user that had to be added to a large number (150+) of active directory groups. Rather than doing so manually, I spent a little time looking up how to automate it, and created a script to help me do it. Here’s how I constructed it:

    (more…)

  • PowerShell: Troubleshoot network connectivity

    A while back, a customer contacted us because they were having problems connecting to Amazon WorkSpaces. This led me to dig into a PowerShell command which was new to me; Test-NetConnection. In its simplest form, the command simply checks your network connectivity:

    (more…)

  • A better way of finding users’ group memberships

    More than six years ago, I wrote a post, detailing how I could identify users’ Active Directory group memberships. While the method I detailed certainly works, it isn’t as simple as it might have been. Having recently found myself needing to perform that very same task again, I decided to revisit this topic, to show how I did it this time around.

    (more…)

  • Finding all groups without a manager in a specific OU in AD

    Last week, I showed you how you can easily find the OU to use when looking for the members of a specific OU. Today, I’d like to show you how I use that information. The background was that we use AD groups to control access to network shares. In order for IT support to know who is authorized to approve requests for access to these shares, we use the Managed By tab, assigning the owner of the network share as manager:

    (more…)