Change Active Directory Password Remotely
Hello,
Today I wanted to share a small tips about a feature that is not widely known. Indeed, a lot of people deploy AD FS for Office 365 without knowing the full capabilities of this feature.
Continue readingRenew Active Directory User Password Without Knowing It
Hello,
Today we’ll how you can renew an Active Directory user password, without knowing it. It can be very convenient when you have a service account with a password expiration but don’t want to change it for whatever reason. It can also save the day when you have one of your VIP user that is in a kind of emergency and need his mailbox access but you can’t change the password be cause he doesn’t have a secure AD access. You can have plenty of reasons to perform that kind of action. Continue reading
Invoke Active Directory SDProp Powershell
Hello,
Active Directory uses an internal process named SDProp for “Security Descriptor Propagation” to apply different ACLs on high privileges users or groups. The process copy the ACL from the AdminSDHolder to protect those users and groups. You can read a lot more information on a previous article of mine. Continue reading
Active Directory Password not Required
Hello,
This is something that is not widely known but you can have a blank password on your Active Directory user account even with a password policy in place, or some Password Setting Objects applying. Continue reading
Active Directory Star Wars PowerShell Module
Hello,
Some time ago I talk about how to create Active Directory users based on the Star Wars world. This will help you to create some good tests users for your labs or demo instead of User1, User2 and so on. Continue reading
Active Directory Delegation PowerShell
Hello,
Active Directory delegation can be complicated to implement. Get it right can be long and hard depending of your needs. By default, Microsoft offers some delegation trough builtin groups like: Continue reading
Active Directory PowerShell Module
Hello,
A quick follow up from an old post, there some bonus feature with the Active Directory module. This module is not as efficient as the ADSI objects shown in the post but hereunder some example of bonus features. Continue reading
Check Global Address List Compliance PowerShell
Hello,
When migrating to Office 365 from various exotic messaging system, you usually hit the fact that Active Directory isn’t a reflect of the situation. Especially when you’re looking at the attributes that are used for building the global address list for Exchange Online and Skype Online. Continue reading
Active Directory Security Report PowerShell
Hello,
Active Directory is one of the most critical system in your infrastructure, we saw previously how to get some basic information about how you’re using it, and get some statistics about the users, computers and groups. Continue reading
Active Directory PowerShell ADSI ADSISearcher
Hello,
You have several ways to query Active Directory with PowerShell, some of them have prerequisites on the client, the server, or none. Today, we’ll see a few examples of such tools. Continue reading