@alane
Sign in to post a link or comment!
As always very detailed and interestingly written. Thanks a lot!
Jeffery Hicks wrote a new post,
Using PowerShell with $PSStyle 1 day agoPowerShell 7.2 introduced the automatic variable $PSStyle for a new feature called PSAnsiRendering. In this post, I show you how you can use ANSI rendering to control text decorations, such as color and font styling, in PowerShell.
Hulk888 commented on
Enabling PowerShell remoting fails due to Public network connection type 2 days, 3 hours agoExcellent! Sending you many blessings! Thank you!
Wolfgang Sommergut wrote a new post,
FileZilla: Migrate settings and connections, read stored passwords 4 days agoThe open-source FTP client FileZilla offers the option of saving connections, including passwords. If you have entered many FTP servers there, then you can take their settings to other computers. You can use PowerShell to decrypt the passwords.
Ron Sokoloski joined the group
PowerShell 4 days, 21 hours agoAlan Hawkins joined the group
PowerShell 5 days agomupa joined the group
PowerShell 1 week ago
Sponsor posted an update in the group
PowerShell 1 week ago
PowerShell is great but together with ScriptRunner it becomes a real solution for every organization.
With the new ScriptRunner features it is super easy to securely delegate administrative tasks to your help desk team and even end-users. The ScriptRunner reports and dashboards help you now to visualize infrastructure analyses and the time your organization saved by automating with ScriptRunner.
Register for freeJoachim Otahal commented on
Install and schedule Windows updates with PowerShell 1 week, 1 day agoWe have 2022 January, and it still works from Powershell 2.0 on Windows Vista / Server 2008 (without R2) up to Windows 11 newest insider build. Just tested...
Hi,
i made some progress, the script can be used from Computer Client like Win10, and he dont need to import Active Directory modules,
also dont need to enter config.ini DC information, it will be get automaticallyJonathan Droesch commented on
Perform Active Directory security assessment using PowerShell 1 week, 5 days agoSorry my bad, 551 was good, it's the 567 that need to be change.
551 : $domaininfo.RIDMaster --> $domaininfo.DomainMode
567 : $domaininfo.DomainMode --> $domaininfo.RIDMasterHi Krishnamoorthi,
as I explained above, there is the possibility of packaging the AD module, to launch the script from a client, it will be more secure than doing it on the DC itself, adjust it too to remove the static variables will be interesting, as well as a GUI, if you agree you can tell me how to contact you to optimize it
Krishnamoorthi Gopal commented on
Perform Active Directory security assessment using PowerShell 2 weeks agoMake sure Powershell AD Module is exists from where u running the script
First of all, thank for the script.
Unlikely I'm just getting one User out of the script with the following error in PowerShell:
Get-ADUser : Not a valid Win32-FileTime.
Parametername: fileTime-
Krishnamoorthi Gopal commented on
Perform Active Directory security assessment using PowerShell 2 weeks agoThanks for reminding... Its updated
Thank you very much Krishnamoorthi. That was it. I am so sorry about such a stupid mistake. 🙂
Thank you, I appreciate your help.Tomas
Ah, of course, forgot I'd need to expand the list of properties. Used that and have now resolved them all and documented them just incase.
Thanks again.
-
Krishnamoorthi Gopal commented on
Perform Active Directory security assessment using PowerShell 2 weeks agoget-aduser -filter * -properties * | where {$_.PasswordNotRequired -eq $true}
Try the above one
-
Krishnamoorthi Gopal commented on
Perform Active Directory security assessment using PowerShell 2 weeks agoPls remove txt from the INI file format..It is Config.ini.txt currently
Thank you for this, it's really helpful and puts my mind at ease to see a lot of green. I do have a query with regards to the 'Users with Password Not Required' line though. My report found;
10,000 odd Total Users
3000 enabled
7000 disabled
1100 inactive (how many days does it use for inactivity out of interest?)
6000 users with password not requiredIt's that last line that concerns me but looking into the script it's looking at all users where 'passwordnotrequired -eq $true'. I've ran that myself with get-aduser -filter * | where {$_.PasswordNotRequired -eq $true} and I get 0 results (which I'd expect). Any thoughts on why it's pulling 6000 as part of the wider script?
- Load More
