As part of a Microsoft Endpoint Manager Configuration Manager (MEMCM) after the CD / DVD ISO is downloaded from the Licensing site or Demo site the ISO needs to be expanded and the prerequisites need to be downloaded. Instead of manually mounting the ISO and copying the contents from the mounted drive, then executing the … Continue reading Automating MEMCM install part 1 – ISO expansion
The Directory Services Restore Mode (DSRM) password is first set when promoting a new Domain Controller. I have encountered many Active Directory environments where the DSRM password for the Domain Controllers is not known or safely stored for retrieval when needed. In this article I revisit the options to reset the DSRM password.
Introduction For logging into office 365 services, and you are syncing your users from on premises AD via Azure AD Connect, Microsoft has always recommended changing your users UPNs to match their e-mail address. 2 of the main reasons for this are: You can not use non routable domains in Azure AD. So domain.local will … Continue reading Azure AD Alternate Login ID – Use your e-mail address (preview).
Automation is always good in large or small organizations to minimize error and remove the tediousness of repetitive task. This script will install the management point (MP) role on one or multiple site system servers in thier assigned site.
Hi, I am Jyoti Prakash, part of SI IGD, based out of Bangalore, India. This blog gives you a glimpse of what Intune Graph API is all about and how to use it. What is Graph API? The Microsoft Graph API for Intune enables programmatic access to Intune information for your tenant; the API provides … Continue reading How To: Graph API to export Intune Managed Devices
A blog on how to automate creation and upload of Intune Win32 (.IntuneWin) packages
I had the occasion recently to work with a customer that had domain controllers that were disconnected from the Internet, but still wanted to ingest the server event logs into Azure Sentinel. Sifting through research I found there's a myriad of ways to do it (including standing up a Log Analytics gateway) but one of … Continue reading Exporting Events from Disconnected Systems to Ingest into Azure Sentinel
Recently, one of our bigger clients had request to migrate from old to new Print servers. This task also involved re-mapping printers on user side. So far the printers had been mapped manually and in the company with 10000+ users and over 1000 print queues spread over 3 Print servers this would be very difficult … Continue reading Re-mapping large number of printers with PowerShell
Introduction Way back when your AD integrated DNS zone data lived inside of the naming context in AD (next to your users and computers) you could protect it from accidental deletion just like any other object. But this can cause a problem years later when you want to move these zones to their own application … Continue reading Field Notes: Error when changing DNS replication scope
Importing the Security Baselines into AD easily The easiest method of importing all the settings into AD is a script that is included with the baselines, its stored beneath the Scripts folder named "Baseline-ADImport.ps1". Baseline-ADImport.ps1 Imported GPO's in AD In the image above you can see everything that is imported with the Security Baseline for … Continue reading Understanding Microsoft Security Baselines and Applying Them – Part 2