Hello,
You can restore your “Default Domain Controllers Policy” and “Default Domain Policy” if you corrupted, deleted, messed up those.DcGpoFix is the tool you need : Continue reading
Restore Default Domain Policy
Reply
Tag Archives: GPO
Export GPO Settings with PowerShell
Hello,
Since Windows Server 2008 R2, Microsoft provided us a GroupPolicy PowerShell module. Continue reading
PowerShell Logging Features
Hello,
Nowadays, PowerShell is very popular among security oriented folks. In red teams, and blue teams too. Continue reading
Synchronize DSRM Password with a Domain Account
Hello,
If you ever need to start a Domain Controller in Directory Service Restore Mode, you know the pain to find the appropriate password. When the DC is up and running, you can reset this password pretty easily with ntdsutil.exe. Managing it by hand is error prone and so not offer any benefits, so let’s make a GPO ! Continue reading
Sent Office 365 Deleted Item Shared Mailbox
Hello,
By default, with Office 365 ProPlus (2013 and 2016 for sure), when you send/delete a mail from a shared mailbox on which you have delegation on it, those items go into your ‘Sent Items’ and ‘Deleted Items’ in your mailbox, and not in the delegate’s one. Continue reading
PowerShell Constrained mode
Hello,
PowerShell comes with several language mode : Continue reading
Override Bitlocker to Go Group Policy PowerShell
Override Bitlocker to Go Group Policy
Hello,
In some organization, group policies admins enforce Bitlocker to go (Deny write access to removable drives not protected by BitLocker), that can be pretty annoying if you have an USB stick for your car, an ebook reader, or any type of device that does not support Bitlocker. Continue reading
Weak password encryption in Group Policy Preference
Hello,
Since Windows Server 2008, we are able to set local administrator password thanks to Group Policy Preference but, this “encryption” key is available on MSDN, so, anyone can read the clear text password with a few lines of PowerShell. Continue reading
Get GPResult remotely with PowerShell
Hello,
You can do a GPresult with PowerShell since PowerShell 2 with GroupPolicy module : Continue reading
Get GPO informations configurations and ACL
Hello,
I made a nice function based on the “GroupPolicy” Powershell module provided by Windows 7/2008R2 and newer. This script will get GPO informations configurations and ACL in your Active Directory domain.