'One-liner' Tag
PowerShell : How do I set the delegation sensitive flag on users and computers ?
Kerberos Delegation, constrained and unconstrained is a complex topic, and one that often comes up when Security implications of External/Forests Trusts are discussed. Few days ago, on ActiveDir a similar topic was shed light upon. In brief Brian Arkills sums it up below, The other security implication that most folks seem oblivious to is the [...]
PowerShell : How to lookup Schema version of your forest ?
The schema version is revealed via the objectversion attribute off of the schema object from your configuration head of the forest i.e “cn=schema,cn=configuration,dc=yourdomain,dc=int”. So using Quest Cmdlets, you can run this query : Get-QADObject “cn=schema,cn=configuration,dc=yourdomain,dc=int” -ip objectversion | select objectversion The –ip is the alias for includedproperties. And, when using the native AD Cmdlets of [...]
PowerShell : How do I fix displayName attribute for all users in Active Directory ?
For small shops that do not leverage automated provisioning tools, they face challenge in keeping the attributes for Users and other objects in AD standardized. For similar situation, recently I was asked from Access Control team if there is an easy way to fix the displayName attribute for all users or to fill in the [...]