Book Image

Windows Server 2016 Automation with PowerShell Cookbook - Second Edition

By : Thomas Lee, Ed Goad
Book Image

Windows Server 2016 Automation with PowerShell Cookbook - Second Edition

By: Thomas Lee, Ed Goad

Overview of this book

This book showcases several ways that Windows administrators can use to automate and streamline their job. You'll start with the PowerShell and Windows Server fundamentals, where you'll become well versed with PowerShell and Windows Server features. In the next module, Core Windows Server 2016, you'll implement Nano Server, manage Windows updates, and implement troubleshooting and server inventories. You'll then move on to the Networking module, where you'll manage Windows network services and network shares. The last module covers Azure and DSC, where you will use Azure on PowerShell and DSC to easily maintain Windows servers.

Related Content you might be interested in

Current Title:

Small book image
Windows Server 2016 Automation with PowerShell Cookbook - Second Edition
Thomas Lee | Ed Goad
Sep, 2017 | 660 pages
Small book image
Windows Server Automation with PowerShell Cookbook
Thomas Lee
Jan, 2023 | 714 pages
Small book image
Windows Server Automation with PowerShell Cookbook
Thomas Lee
Jul, 2021 | 674 pages
Small book image
Windows Server 2016 Hyper-V Cookbook
Leandro Carvalho | Charbel Nemnom | Patrick Lownds
Jan, 2017 | 524 pages
Table of Contents (21 chapters)
Title Page
Title Page
Credits
Credits
About the Author
About the Author
Acknowledgment
Acknowledgment
About the Reviewer
About the Reviewer
www.PacktPub.com
www.PacktPub.com
Customer Feedback
Customer Feedback
Preface
Preface
Free Chapter
1
What's New in PowerShell and Windows Server
What's New in PowerShell and Windows Server
Introduction
Exploring Remote Server Administration Tools (RSAT)
Discovering new cmdlets in PowerShell 4 and Windows Server 2012 R2
Discovering new cmdlets in PowerShell 5/5.1 and Windows Server 2016
Exploring PowerShellGet
Exploring PackageManagement
Creating an internal PowerShell repository
2
Implementing Nano Server
Implementing Nano Server
Introduction
Deploying a Nano Server in a VM
Connecting to and managing a Nano Server
Installing features with Nano Server packages
3
Managing Windows Updates
Managing Windows Updates
Introduction
Installing Windows Server Update Services
Configuring WSUS update synchronization
Configuring the Windows Update client
Creating computer target groups
Configuring WSUS auto-approvals
Managing updates
4
Managing Printers
Managing Printers
Introduction
Installing and sharing printers
Publishing a printer
Changing the spool directory
Changing printer drivers
Printing a test page on a printer
Reporting on printer security
Modifying printer security
Deploying shared printers
Enabling Branch Office Direct Printing
Creating a printer pool
Reporting on printer usage
5
Managing Server Backup
Managing Server Backup
Introduction
Configure and set backup policy
Examine the results of a backup
Initiate a backup manually
Restore files and folders
Backup and restore a Hyper-V Virtual Machine
Backup and perform bare metal recovery
Restore the registry from a backup
Create a daily backup report
Backup and restore using Microsoft Azure
6
Managing Performance
Managing Performance
Introduction
Explore performance counters with Get-Counter
Explore performance counters using CIM cmdlets
Configuring and using Data Collector Sets
Reporting on performance data
Generating performance monitoring graph
Creating a system diagnostics report
7
Troubleshooting Windows Server 2016
Troubleshooting Windows Server 2016
Introduction
Checking network connectivity
Using troubleshooting packs
Use best practice analyzer
Managing event logs
Forward event logs to a central server
8
Managing Windows Networking Services
Managing Windows Networking Services
Introduction
New ways to do old things
Configuring IP addressing
Converting IP address from static to DHCP
Installing domain controllers and DNS
Configuring zones and resource records in DNS
Installing and authorizing a DHCP server
Configuring DHCP scopes
Configuring DHCP server failover and load balancing
Building a public key infrastructure
Creating and managing AD users, groups, and computers
Adding users to AD using a CSV file
Reporting on AD users
Finding expired computers in AD
Creating a privileged user report
9
Managing Network Shares
Managing Network Shares
Introduction
Securing your SMB file server
Creating and securing SMB shares
Accessing SMB shares
Creating an iSCSI target
Using an iSCSI target
Creating a scale-out SMB file server
Configuring a DFS Namespace
Configuring DFS Replication
10
Managing Internet Information Server
Managing Internet Information Server
Introduction
Installing IIS
Configuring IIS for SSL
Managing TLS cipher suites
Configuring a central certificate store
Configuring IIS bindings
Configuring IIS logging and log files
Managing applications and application pools
Managing and monitoring network load balancing
11
Managing Hyper-V
Managing Hyper-V
Introduction
Installing and configuring Hyper-V feature
Using Windows PowerShell Direct
Securing Hyper-V host
Create a virtual machine
Configuring VM hardware
Configuring Hyper-V networking
Implementing nested Hyper-V
Managing VM state
Configuring VM and storage movement
Configuring VM replication
Managing VM checkpoints
Monitoring Hyper-V utilization and performance
Creating a Hyper-V health report
12
Managing Azure
Managing Azure
Introduction
Using PowerShell with Azure
Creating Core Azure Resources
Exploring your storage account
Creating Azure an SMB File Share
Creating and using websites
Creating and using Azure virtual machines
13
Using Desired State Configuration
Using Desired State Configuration
Introduction
Using DSC and built-in resources
Parameterizing DSC configuration
Finding and installing DSC resources
Using DSC with PSGallery resources
Configuring Local Configuration Manager
Implementing a SMB pull server
Implementing a DSC web-based pull server
Using DSC partial configurations

Creating a privileged user report

When you add a user to a group (and the user re-logs on), the user acquires additional permissions and rights. That may be a good thing! Group membership enables the user to perform job-related duties. However, adding the user to the Enterprise Admins group, for example, provides that user with rights over most of your forest. A user who acquires the membership to such high privilege groups may not have benign intentions and could represent a serious risk. The report you generate using this recipe shows the privileged users and any changes that someone has made to the group membership.

Getting ready

You need a DC on which to run this report.

How to do it...

  1. Create an array for privileged users:
$PUsers = @()
  1. Query the Enterprise Admins/Domain Admins/Scheme Admins groups for members and add to the $Pusers array:
# Enterprise Admins$Members = Get-ADGroupMember `
                    -Identity 'Enterprise Admins' -Recursive |Sort-Object -Property Name$PUsers += foreach...
Previous Section
End of Chapter 8
Next Chapter