David Kelly

Get-WmiObject win32_service -computer gdc-slo-p-slg01 |select-object @{Label="Server Name"; Expression={$_.__SERVER}}, Name , Startname |ConvertTo-HTML | Out-File "C:\test.htm"

1	Get-WmiObject win32_service -computer gdc-slo-p-slg01 \|select-object @{Label="Server Name"; Expression={$_.__SERVER}}, Name , Startname \|ConvertTo-HTML \| Out-File "C:\test.htm"

Get Services on remote computer and save to file

foreach ($computer in $computerlist ) {
  Write-Host $computer +" - Admin list"
  (Get-LocalGroupMembers $computer).members
  }

foreach ($computer in $computerlist ) {

Write-Host $computer +" - Admin list"

(Get-LocalGroupMembers $computer).members

}

Loads a list of computes and looks who is in the admin group

* get-localGroupMembers is a function:

<span class="powerShell__keyword">function</span> Get<span class="powerShell__operator">-</span>LocalGroupMembers  
{  
    <span class="powerShell__keyword">param</span>(  
        [parameter(Mandatory=<span class="powerShell__variable">$true</span>,ValueFromPipeline=<span class="powerShell__variable">$true</span>,ValueFromPipelineByPropertyName=<span class="powerShell__variable">$true</span>)]  
        [Alias(<span class="powerShell__string">"Name"</span>)]  
        [string]<span class="powerShell__variable">$ComputerName</span>,  
        [string]<span class="powerShell__variable">$GroupName</span> = <span class="powerShell__string">"Administrators"</span>  
    )  
      
    <span class="powerShell__keyword">begin</span> {}  
      
    <span class="powerShell__keyword">process</span>  
    {  
        <span class="powerShell__com"># If the account name of the computer object was passed in, it will </span> 
        <span class="powerShell__com"># end with a $. Get rid of it so it doesn't screw up the WMI query. </span> 
        <span class="powerShell__variable">$ComputerName</span> = <span class="powerShell__variable">$ComputerName</span>.Replace(<span class="powerShell__string">"`$"</span>, <span class="powerShell__string">''</span>)  
  
        <span class="powerShell__com"># Initialize an array to hold the results of our query. </span> 
        <span class="powerShell__variable">$arr</span> = @()  
  
        <span class="powerShell__com"># Get hostname of remote system.  $computername could reference cluster/alias name.  Need real hostname for subsequent WMI query.</span> 
        <span class="powerShell__variable">$hostname</span> = (<span class="powerShell__cmdlets">Get-WmiObject</span> <span class="powerShell__operator">-</span>ComputerName <span class="powerShell__variable">$ComputerName</span> <span class="powerShell__operator">-</span>Class Win32_ComputerSystem).Name 
 
        <span class="powerShell__variable">$wmi</span> = <span class="powerShell__cmdlets">Get-WmiObject</span> <span class="powerShell__operator">-</span>ComputerName <span class="powerShell__variable">$ComputerName</span> <span class="powerShell__operator">-</span>Query <span class="powerShell__string">"SELECT * FROM Win32_GroupUser WHERE GroupComponent=`"</span>Win32_Group.Domain=<span class="powerShell__string">'$Hostname'</span>,Name=<span class="powerShell__string">'$GroupName'</span>`<span class="powerShell__string">""</span>  
  
        <span class="powerShell__com"># Parse out the username from each result and append it to the array. </span> 
        <span class="powerShell__keyword">if</span> (<span class="powerShell__variable">$wmi</span> <span class="powerShell__operator">-</span>ne <span class="powerShell__variable">$null</span>)  
        {  
            <span class="powerShell__keyword">foreach</span> (<span class="powerShell__variable">$item</span> <span class="powerShell__keyword">in</span> <span class="powerShell__variable">$wmi</span>)  
            {  
                <span class="powerShell__variable">$data</span> = <span class="powerShell__variable">$item</span>.PartComponent <span class="powerShell__operator">-</span>split <span class="powerShell__string">"\,"</span> 
                <span class="powerShell__variable">$domain</span> = (<span class="powerShell__variable">$data</span>[0] <span class="powerShell__operator">-</span>split <span class="powerShell__string">"="</span>)[1] 
                <span class="powerShell__variable">$name</span> = (<span class="powerShell__variable">$data</span>[1] <span class="powerShell__operator">-</span>split <span class="powerShell__string">"="</span>)[1] 
                <span class="powerShell__variable">$arr</span> <span class="powerShell__operator">+</span>= (<span class="powerShell__string">"$domain\$name"</span>).Replace(<span class="powerShell__string">""</span><span class="powerShell__string">""</span>,<span class="powerShell__string">""</span>) 
                [Array]::<span class="powerShell__alias">Sort</span>(<span class="powerShell__variable">$arr</span>) 
            }  
        }  
  
        <span class="powerShell__variable">$hash</span> = @{ComputerName=<span class="powerShell__variable">$ComputerName</span>;Members=<span class="powerShell__variable">$arr</span>}  
        <span class="powerShell__keyword">return</span> <span class="powerShell__variable">$hash</span>  
    }  
      
    <span class="powerShell__keyword">end</span>{}  
}

function Get-LocalGroupMembers

{

param(

[parameter(Mandatory=$true,ValueFromPipeline=$true,ValueFromPipelineByPropertyName=$true)]

[Alias("Name")]

[string]$ComputerName,

[string]$GroupName = "Administrators"

)

begin {}

process

{

# If the account name of the computer object was passed in, it will

# end with a $. Get rid of it so it doesn't screw up the WMI query.

$ComputerName = $ComputerName.Replace("`$", '')

# Initialize an array to hold the results of our query.

$arr = @()

# Get hostname of remote system. $computername could reference cluster/alias name. Need real hostname for subsequent WMI query.

$hostname = (Get-WmiObject -ComputerName $ComputerName -Class Win32_ComputerSystem).Name

$wmi = Get-WmiObject -ComputerName $ComputerName -Query "SELECT * FROM Win32_GroupUser WHERE GroupComponent=`"Win32_Group.Domain='$Hostname',Name='$GroupName'`""

# Parse out the username from each result and append it to the array.

if ($wmi -ne $null)

{

foreach ($item in $wmi)

{

$data = $item.PartComponent -split "\,"

$domain = ($data[0] -split "=")[1]

$name = ($data[1] -split "=")[1]

$arr += ("$domain\$name").Replace("""","")

[Array]::Sort($arr)

}

$hash = @{ComputerName=$ComputerName;Members=$arr}

return $hash

}

end{}

}

Found Here

https://gallery.technet.microsoft.com/scriptcenter/List-local-group-members-c25dbcc4

All Credit for this article goes HERE Thanks to Stephanie Kahlam

Hey DirSync where is my DirSyncConfigShell.psc1?

In previous versions of Dirsync (latest version 1.0.6862.0000) there was a nifty little shell that could be found in

C:\Program Files\Windows Azure Active Directory Sync\SYNCBUS\Synchronization Service\UIShell

miisclient.exe

C:\Program Files\Windows Azure Active Directory Sync\SYNCBUS\Synchronization Service\UIShell

miisclient.exe

I liked to create a shortcut on my desktop along with the ever so ambiguously named DirSync GUI, miisclient.exe. When I logged into my server I had quick access to launch DirSync GUI and also quick access to Force a Synchronization if required.

Today the DirSyncConfigShell.psc1 is no more. In order to enable the ability to “start” a quick synchronization you will now need to open a PS shell in Admin mode, enter “import-module DirSync” then run “start-onlinecoexistencesync”

What DirSync Version am I Running?

If you need to check what version of DirSync you currently have installed, simply run the following PowerShell cmdlet:

(GP “hklm:SOFTWAREMicrosoftWindowsCurrentVersionUninstallMicrosoft Online Directory Sync”).DisplayVersion

How to Change DirSync “synchronization interval”

By default DirSync (Windows Azure Active Directory Sync) will synchronize every 3 hours. This interval can be changed by editing the Microsoft.Online.DirSync.Scheduler.exe config file found in C:Program FilesWindows Azure Active Directory Sync

Open the Microsoft.Online.DirSync.Scheduler.exe config file with notepad
Look for the entry <add key=”SyncTimeInterval” value=”3:0:0″ /> which specifies Hours:minutes:seconds Change the value to an interval you desire IE> “0:10:0” for ten minutes and save the file
Open Start –> Run –> Services.msc and restart Windows Azure Active Directory Sync Service

This window shows a sync interval of 5 mins after the config file has been edited

DirSync Set Up Credentials

During setup of the Windows Azure Active Directory Sync tool Configuration Wizard you will be asked for two sets of credentials; Azure Office 365 Company Administrator and On-Premises AD domain administrator.

The account specified for Windows Azure is not required to be licensed in Office 365

This account should however, be configured with a NON expiring password as DirSync will cease to run if the password changes in Office 365. The password can be changed at the DirSync GUI should this occur but it is probably easier to set it to NON expiring and avoid service disruption to your Synchronization process.

To set a user to a non expiring password run the following PowerShell command:

set-msoluser -Userprincipalname <userID> -PasswordNeverExpires $true

If you need to change the password in DirSync GUI perform the following:

Open miisclient.exe

Click on Management Agents

Right click Windows Azure Active Directory Connector and choose properties

Click on Conncetivity then update the password

David J Kelly

All posts by David Kelly

Event COLLECTOR for logons (RDP)

Powershell Query Services on Remote Computer

Event log Flitering

AD Dir Sync