Safe and sound in its shell, the precious pearl is the slave of the currents.
This commit is contained in:
Felix Pankratz
parent
0da10cf348
commit
56cfe39607
10
cheats/ad
10
cheats/ad
@ -1,5 +1,5 @@
|
||||
# global catalog port
|
||||
`-server dc01.contoso.com:3268`
|
||||
`-server dc01.blackmesa.com:3268`
|
||||
|
||||
# set extension attr
|
||||
`Set-ADUser -replace @{extensionAttribute15='f'}`
|
||||
@ -8,19 +8,19 @@
|
||||
`Get-AdUser -filter { passwordNeverExpires -eq $true -and enabled -eq $true } | Select Name, DistinguishedName`
|
||||
|
||||
# get user by SID
|
||||
`get-aduser -Identity "S-1-5-21-" -server dc01.contoso.com:3268`
|
||||
`get-aduser -Identity "S-1-5-21-" -server dc01.blackmesa.com:3268`
|
||||
|
||||
# force pw reset
|
||||
`get-aduser -filter * -SearchBase 'OU=Users,DC=Contoso,DC=com' | set-aduser -ChangePasswordAtLogon $true`
|
||||
`get-aduser -filter * -SearchBase 'OU=Users,DC=BlackMesa,DC=com' | set-aduser -ChangePasswordAtLogon $true`
|
||||
|
||||
# submit CSR to CA
|
||||
`certreq -submit -attrib "CertificateTemplate:Webserver Version3" docs_req.req`
|
||||
`certreq -submit -attrib "CertificateTemplate:WebserverVersion3" docs_req.req`
|
||||
|
||||
# sort users by last logon
|
||||
`get-aduser -filter 'enabled -eq "true"' -properties lastlogontimestamp | Select samaccountname, @{Name="lastLogontimestamp";Expression={[datetime]::FromFileTime($_.'lastLogontimestamp')}} | sort-object -property 'lastLogontimestamp' `
|
||||
|
||||
# check CRL
|
||||
`certutil -URL "http://ca.contoso.com/CertEnroll/contoso ca01.crl"`
|
||||
`certutil -URL "http://ca.blackmesa.com/CertEnroll/blackmesa ca01.crl"`
|
||||
|
||||
# copy group members to another group
|
||||
`Get-ADGroupMember -Identity "Group1" | % {Add-ADGroupMember -Identity "Group2" -Members $_.distinguishedName}`
|
||||
|
||||
@ -8,20 +8,29 @@
|
||||
`New-MailboxRestoreRequest -SourceStoreMailbox 369c6ce9-301d-41af-b4cf-cca87d679756 -SourceDatabase MailDB07 -TargetMailbox MULRaumG6.03.410 -AllowLegacyDNMismatch`
|
||||
|
||||
# give group permission on mailbox "finance1"
|
||||
`add-mailboxpermission -Identity finance1 -user CONTOSO\Accounting -AccessRights 'FullAccess'`
|
||||
`add-mailboxpermission -Identity finance1 -user BLACKMESA\Accounting -AccessRights 'FullAccess'`
|
||||
|
||||
# set external mail address
|
||||
`Enable-MailUser -Identity FreemanG -ExternalEmailAddress gordon.freeman@contoso.com`
|
||||
`Enable-MailUser -Identity FreemanG -ExternalEmailAddress gordon.freeman@blackmesa.com`
|
||||
|
||||
# add access to calendar
|
||||
`Add-MailboxFolderPermission -Identity Maintenance@contoso.com:\Calendar -User gordon.freeman@contoso.com -AccessRights Editor`
|
||||
`Add-MailboxFolderPermission -Identity Maintenance@blackmesa.com:\Calendar -User gordon.freeman@blackmesa.com -AccessRights Editor`
|
||||
|
||||
# get mailbox folder statistics
|
||||
`Get-MailboxFolderStatistics -Identity FreemanG | select name,foldersize,itemsinfolder | sort-object -Property foldersize | ft`
|
||||
|
||||
# grant sendas on shared mailbox to cloud user (hybrid)
|
||||
`Set-Mailbox -Identity shared_box@contoso.com -GrantSendonBehalfTo user.name@contoso.com`
|
||||
`Set-Mailbox -Identity shared_box@blackmesa.com -GrantSendonBehalfTo user.name@blackmesa.com`
|
||||
|
||||
# disable auto mapping of inbox FreemanG but grant permissions to ArchiveStoreAccount
|
||||
`Add-MailboxPermission -Identity "FreemanG" -User ArchiveStoreAccount -AccessRights FullAccess -AutoMapping $false`
|
||||
`Add-AdPermission -Identity "Freeman, Gordon" -User CONTOSO-Datasystem -AccessRights ExtendedRight -ExtendedRights "Send As"`
|
||||
`Add-AdPermission -Identity "Freeman, Gordon" -User BLACKMESA-Datasystem -AccessRights ExtendedRight -ExtendedRights "Send As"`
|
||||
|
||||
# get members of a dynamic group
|
||||
`$group = Get-DynamicDistributionGroup -Identity BLACKMESA-Mails`
|
||||
`Get-Recipient -RecipientPreviewFilter ($group.RecipientFilter) [-OrganizationalUnit ($<VariableName>.RecipientContainer)]`
|
||||
|
||||
# migrate to exchange online
|
||||
`Connect-ExchangeOnline`
|
||||
`New-MoveRequest -Identity "Gordon.Freeman@blackmesa.com" -Remote -RemoteHostName "email.blackmesa.com" -TargetDeliveryDomain "blackmesa.mail.onmicrosoft.com" -RemoteCredential (Get-Credential)`
|
||||
`Get-MoveRequest | Get-MoveRequestStatistics`
|
||||
|
||||
@ -1,2 +1,2 @@
|
||||
# mount admin share
|
||||
`sudo --preserve-env=HOME mount -t cifs -o username=freemang,domain=CONTOSO //citadel.contoso.com/c$ /mnt/srv`
|
||||
`sudo --preserve-env=HOME mount -t cifs -o username=freemang,domain=BLACKMESA //xen.blackmesa.com/c$ /mnt/srv`
|
||||
|
||||
Loading…
Reference in New Issue
Block a user