active directory

howto://change UPN suffixes with PowerShell

2011-10-10

Need to change the UPN suffix on a bunch of users, and don’t want to do it by hand? Here’s a simple PowerShell script to do the heavy lifting for you.

would you like to know more?

howto://upload BitLocker keys to Active Directory

2010-11-15

Storing BitLocker keys in AD is a great way to keep them safe, but what if you already encrypted the drive before you set up the GPO? No worries, mate, this post will fix you right up.

would you like to know more?

I’ll tell you why I don’t like Mondays

2010-06-28

So you have dumped some data from Active Directory, only to discover all your dates are insanely large integers. Now what? In this post you will learn what those numbers are, how to manipulate them, and how to make them play nice with Excel.

would you like to know more?

splunk> authentication fall down go boom

2010-06-21

If you are using Active Directory authentication with splunk> and encounter the cryptic error “Failed to set cookie. Ensure cookies are enabled in your browser” don’t go looking at your browser settings; the boggle’s not there. Read further to find out what it really else it could be. You might be surprised by the results.

would you like to know more?

howto://lose those fraking warnings when hitting internal https sites

2010-06-09

Tired of getting Certificate Error warnings on all your internal sites? Have an AD Integrated CA that you want to leverage. This post quickly tells you what you need to do to generate a keypair and CSR, issue the certificate with your CA, and start using trusted certificates on all your third party applications.

would you like to know more?

howto://document Active Directory-group memberships

2010-05-19

  Let’s talk some more about documenting Active Directory. I got a request the other day from someone wanting to know all the members of a list of AD groups. On the surface it may seem like a pretty straight-forward request, but there is no way to get that information out of the graphical tools. [...]

would you like to know more?

howto://document Active Directory-infrastructure

2010-05-17

  One of the things all IT folks will agree is good, that is needed, and yet is extremely painful to create and not likely to be up to date, is documentation. Documentation? We don’t need no stinkin’ documentation! Yes, I am afraid that we do. While it’s a great help to have, it’s also [...]

would you like to know more?

howto://configure your 2008R2 PDCe to be an NTP server

2010-05-14

  Ticking away the moments that make up a dull day, I found too many systems frittering and wasting the hours in an off-hand way, or at the very least, letting their clocks drift all over the place. Windows boxes that belonged to the domain were just fine, but other Windows hosts in workgroup mode, [...]

would you like to know more?

howto://bulk modify user home directory paths with dsmod

2010-04-14

  We’re moving all of our file shares from single server physical paths to DFS paths to help with fault-tolerance and disaster recovery, and to make it easier to move things around if we ever want to rebalance our file servers or decommission older servers. One of the things that became necessary is modifying users’ [...]

would you like to know more?

A word or two about DNS Islanding

2010-03-03

  Ever had a domain controller just kind of stop replicating with everyone else? Ever had to move a domain controller to a new ip.addr and then spent hours trying to get AD happy again? Microsoft defines DNS Islanding in KB275278, which indicates that it is a problem with Windows 2000 based domain controllers using [...]

would you like to know more?

net user command reference and examples

2010-03-01

  As a follow up to the recent post on disabling accounts with a script, I thought I would include a quick cheat sheet on net user commands. As you may know, the net commands were what we had to deal with back in the dark ages before VB, WMI, PowerShell, and the likes of [...]

would you like to know more?

howto://Configure Splunk to use AD groups

2010-01-04

Welcome back. So now that we have Splunk set up to use AD for authentication, using the steps from this earlier post, we are ready to set Splunk up so that the authorization also uses AD. We will grant Splunk roles to AD groups under the same area in the Splunk Manager; Authentication Method. Here [...]

would you like to know more?

← Previous Entries