Sign In Start Free Trial

Book Overview & Buying
Table Of Contents

Active Directory with PowerShell

By : Pamarthi Venkata Sitaram, YELLAPRAGADA U PADMAVATHI

4 (9)

Active Directory with PowerShell

4 (9)

By: Pamarthi Venkata Sitaram, YELLAPRAGADA U PADMAVATHI

Overview of this book

If you are looking to automate repetitive tasks in Active Directory management using the PowerShell module, then this book is for you. Any experience in PowerShell would be an added advantage.

Preface

Preface

What this book covers

What you need for this book

Who this book is for

Conventions

Reader feedback

Customer support

Free Chapter

1. Let's Get Started

1. Let's Get Started

Ways to automate Active Directory operations

Summary

2. Managing User and Computer Objects

2. Managing User and Computer Objects

Managing user accounts

Modifying user properties

Deleting user accounts

Managing computer accounts

Deleting computer accounts

Summary

3. Working with Active Directory Groups and Memberships

3. Working with Active Directory Groups and Memberships

Creating different types of security groups

Searching and modifying group object information

Adding members to a group

Listing members of a security group in Active Directory

Removing members from an AD group

Deleting a security group

Summary

4. Configuring Group Policies

4. Configuring Group Policies

Installing the Group Policy module

Querying Group Policies

Creating and linking Group Policies

Working with links, enforcements, and order of GPOs

Working with Group Policy permissions

Updating Group Policy and generating Resultant Set of Policy

Removing Group Policy links and objects

Summary

5. Managing Domains, Organizational Units, Sites, and Subnets

5. Managing Domains, Organizational Units, Sites, and Subnets

Managing domains

Managing Organizational Units

Managing sites and subnets

Summary

6. Advanced AD Operations Using PowerShell

6. Advanced AD Operations Using PowerShell

Installing a new domain

Adding additional domain controllers

Obtaining an Active Directory replication status

Managing Fine-Grained Password Policies

Transferring FSMO roles

Restoring deleted objects

Demoting domain controllers and removing domains

Summary

7. Managing DFS-N and DFS-R Using PowerShell

7. Managing DFS-N and DFS-R Using PowerShell

Installing DFS roles

Managing DFS-N

Managing DFS-R

Summary

8. Managing Active Directory DNS Using PowerShell

8. Managing Active Directory DNS Using PowerShell

Installing and configuring a DNS server

Working with root hints and forwarders

Managing DNS zones

Creating, modifying, and deleting DNS records

Managing DNS Clients

Summary

9. Miscellaneous Scripts and Resources for Further Learning

9. Miscellaneous Scripts and Resources for Further Learning

Checking whether a user, group, computer, or an OU exists

Getting membership of a user, computer, and group

Resetting the password for multiple user accounts

Bulk creation of user accounts

Getting the password expiry date of user accounts

Finding all the disabled user accounts

Getting all domain controllers and their site names in the forest

Moving objects from one OU to another

Finding inactive computers in Active Directory

Creating groups in bulk

Exporting an AD group member's details to CSV

Finding empty groups in Active Directory

Verifying whether a user is a member of the given group or not

Comparing AD groups' membership

Resources for further learning

Index

Index

Creating different types of security groups

As mentioned before, there are different types of security groups available in Active Directory: global, domain local, and universal. You may refer to the TechNet article at http://technet.microsoft.com/en-us/library/cc755692(v=ws.10).aspx to know more about group scopes.

To create a new group in Active Directory, the New-ADGroup cmdlet can be used. This cmdlet accepts three parameters. These are name of the group, the Organizational Unit path in AD, and groupScope, such as domain local/global/universal. Of these, name and groupScope need to be provided mandatorily.

Here is the simple command line to create a new blank AD group in AD with no members in it.

The following command creates a new Active Directory group of type DomainLocal in the specified OU:

New-ADGroup -Name "Test Group1" -Path  "OU=Groups,OU=Prod,DC=techibee,DC=ad" -groupScope domainlocal

Similarly, to create other group types, change the parameter -groupScope....

Visually different images

CONTINUE READING

83

Tech Concepts

36

Programming languages

73

Tech Tools

Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.

Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.

50+ new titles added per month and exclusive early access to books as they are being written.

Active Directory with PowerShell

Search

Your notes and bookmarks