Here's a quick function I created going by your goal:

@pmoncho said in Powershell - Find GPO's for specific Group:

Goal - Find all GPO's that have "SomeGroupName" in Delegation Tab.

I can change it to a script you can run that takes parameters instead if that was how you planned on using it. But as it is below, it's meant to be used within a script or in ISE for example in the screenshots below.

I am using the -eq, so the parameter you use for -GroupName needs to be exact. Otherwise, you can change it to -match for example.

note I only tried this in PS v5.1

function Get-GPOGroupMatches {
    [cmdletbinding()]
    param(
        [Parameter(Mandatory)]
        [string]$GroupName
    )
    
    $gpos = Get-GPO -All

    $list = foreach ($gpo in $gpos) {

        if ((Get-GPPermission -Name $gpo.DisplayName -All).Trustee.Name -eq $GroupName) {

            [PSCustomObject]@{
                
                GPOName = $gpo.DisplayName

            }

        }

    }

    Write-Output -InputObject $list

}

# Example use(s):

    # Example 1:
        Get-GPOGroupMatches -GroupName "TestGroup1"

    # Example 2:
        $GPOs = Get-GPOGroupMatches -GroupName "TestGroup1"
        $GPOs.GPOName

@Dashrender said in what windows server should I choose for Active directory?:

@Alan said in what windows server should I choose for Active directory?:

@Dashrender
-most of the Pcs are running windows 7 pro, we have few windows 10 pro

Please remind the client that Windows 7 only has 3 more years of support left. Jan 2020 is when MS stops making security updates. Definitely not to early to start looking at the requirements to get away from Windows 7.

Wish I could upvote this more. 3 years doesn't mean wait 3 years then look to move. Start now.

@DustinB3403 said in What Are You Doing Right Now:

@wirestyle22 said in What Are You Doing Right Now:

@Kelly One of his biggest triggers for sure lol

btw @scottalanmiller I have a need for high throughput on a production application server housing 75 TB. My best practice Raid 5 configuration is really going to shine

RAID0 would be so much faster!

75 TB is a lot of data to RAID... Anything over 12 TB shouldn't be raided and should be just straight pass-through and set up as individual drives.

Edit: not serious!!!!

I did some experimenting... but it's not always the case, it depends on what you are doing. But doing this with simple counting results:

And for fun lol....

@fuznutz04 said in Copy file from Windows Server to hosted external CentOS server:

I'm doing something very similar but cannot get the scheduled task to take my arguments properly.

I'm not sure where it is failing. Scheduled tasks gives no errors, just information.

The only difference is that my server listens on a port other than 22 for SSH. So, I put a :XXXX (port number) in the first command. Still no dice. I'm not sure if it is failing on the contents of the script, or failing because of the arguments.

# Connect
open sftp://<username>:<password>@123.45.67.890:XXXX -hostkey="ssh-rsa 2048 xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx"

The only info I get from event viewer is:

Task Scheduler successfully completed task "\Get Call Recordings" , instance "{13fcf873-f123-46e6-8e80-6ce90b57638c}" , action "C:\Program Files (x86)\WinSCP\WinSCP.exe" with return code 0.
1111

See if you can connect normally.

Open up a command prompt and run winscp.exe.

Then type just:

open sftp://<username>@123.45.67.890:XXXX -hostkey="ssh-rsa 2048 <hostkey>"

If you can connect this way, by it prompting you to enter a username, then...

it might be that you may be using an unsupported character in your password... preventing you from including the password in the line you posted.

If the script actually runs, and you are using "/log=<path><log file>.log in the argument, you can check that log.

The wife and kids met me for lunch today. Ate a healthy meal of natural chicken, steamed veges and brown rice.

@scottalanmiller said in IT Finance Explained at MangoCon 2019:

@wrx7m said in IT Finance Explained at MangoCon 2019:

Will this also be available after the conference (in video or audio) for those of us who might have used the topics covered to convince their boss (CFO) to go to MC?

That is the intention, and the people (cough MQ cough) who blocked that in the past are no longer involved. The primary focus of the conference, beyond the opportunity for socialization in person, is the production of the video materials, so there will be a strong focus on making sure that those come out and are available.

And for those of us too far to make it there.

If you are unable to connect to O365 via PowerShell and get an error similar to below, follow these instructions.

Error:
Import-PSSession : Could not load type ‘System.Management.Automation.SecuritySupport’ from assembly
‘System.Management.Automation, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35’.

The fix:

• Open up an elevated PowerShell prompt and type:
• wusa /uninstall /kb:3176934
• Reboot required

Link:

https://blogs.msdn.microsoft.com/powershell/2016/08/23/powershell-dsc-broken-in-kb3176932/

@JaredBusch said in Hyper V replica VS Veeam B&R Replica.:

@Tim_G The OP specifically stated they have a single Physical server doing AD + file shares.

There is not currently anything else, but he was looking at a second server for redundancy. Some gave various other opinions, I gave my opinion.

I just went back and re-read everything. I feel like an idiot now. Yes you are right there's only one physical server running Windows that is doing AD and file services.

But in my defense, all that talk of replication, HA, clustering, failover, Veeam replica, Starwind, vSAN, etc... I was under the impression that we were talking about an already established environment and infrastructure with existing multiple hypervisors. Because my line of thought was why all that, for just a single server running one instance of Windows, unless there's already an existing establishment that makes talk of all that worth it.

Honestly, with his current "single server setup"... there's no way I would recommend going out and buying more servers and Windows licenses just to set up another DC. That's just crazy.

A good balanced diet of proper food and exercise (light-medium weight training followed by 20 minutes of light cardio) will generally improve most conditions relatively quickly... over the course of a few months.

The key is to do this your whole life. Start doing it now, no matter your current age... it doesn't matter when you start, just start and do it 3 times a week. All you need in 45 minutes.

It will help prevent muscle loss and osteoporosis (at least!), as that stuff starts as soon as 30 years old.

You know how it is.. you're 90 year old grandma says how strong you are because you helped carry in a gallon of milk... start with the light to medium weight training and a little bit of light cardio, with a decent diet... grandma will be hauling those gallons of milk faster than you... 4 under each arm!

@scottalanmiller said in SMB vs Enterprise:

@Tim_G said in SMB vs Enterprise:

@scottalanmiller said in SMB vs Enterprise:

@Tim_G said in SMB vs Enterprise:

Enterprise jobs seem to be more focused on a specific area, where SMB are more generalist type jobs.

In an enterprise job, your job may ONLY be working with Backup. Or it may ONLY be Group Policy.

Where as in an SMB, you will do it ALL, and then some.

Which also means that it is harder to be valuable in the SMB. Because you have to do work of many different levels, not just types. So you need the skills of ten enterprise seniors to do the job well of one generalist mid level.

This is why I prefer the generalist role more so than a focused role. First of all, it's way more fun to do it all... I enjoy being involved in all IT aspects. Also, being a generalistdoesn't mean you necessarily lack skill in an area. It means you are well versed and experienced in many areas, and are therefore able to innovate better.

I prefer it too. The issue is getting compensated for the skills, not acquiring them. How do you pay a generalist what they are worth if they don't have time to focus on high value tasks?

You do focus on high value tasks. You focus on multiple high value tasks simultaneously.

Everything on the StarWind VTL side is great. It was quick and easy to install. I installed it on Hyper-V Server 2016, and it went flawlessly. I was able to remotely connect to and manage the VTL without issue across two sites.

The more time consuming parts was setting up SCDPM. But it's Microsoft, so you'll have that.

How do you drastically improve technology and add features while still allowing decades-old software to continue to use it, which is most likely using old and outdated technologies and practices itself?

I get why they are doing it, and it actually does make sense.

The easy solution is to just keep your software recent.

Office 2010 is problematic enough to want to upgrade.

Edit: Here's the real, less-dramatized article: https://techcommunity.microsoft.com/t5/Office-365-Blog/Office-365-system-requirements-changes-for-Office-client/ba-p/62327

It very well could be that the server had several network ports, and someone just figured they all aught to all be plugged in... just out of ignorance. I'd see what traffic is on them as I said above. Or what you said, just ask them why.

It's when the minority screams the loudest, making the headlines... where the media projects prejudice and stereotyping. That's why it only takes a few to ruin it for good majority. And you can insert that statement into anything... professions, politics, religion, race, anything.

I liked it.

Just something quick that immediately stood out:

I didn't like seeing the "from scratch" in there. "Implemented Windows Server 2012 domain" says it all. It may be just a nitpick, but thought I'd mention it.

All Microsoft Hyper-V Server versions are free.

It's when you install the Hyper-V role in Windows Server that using it is no longer free.

Example:

Microsoft Hyper-V Server 2019 versus Microsoft Windows Server 2019 + Hyper-V Role

It's horrific what happened, but I can't stand the media.

Ah, it was a "gunman", not a "terrorist". Funny how the media defines things. The article clearly states it's not an "overseas terrorist".

So I guess if you are an American citizen, not from overseas, then you can't be a terrorist, no matter what you do.

But if you are from overseas, and have a specific religion, then you are a terrorist... no matter what you do.

Update:

I received email confirmation of the money you sent to paypal.
I have everything ready to ship.

Won't be able to today (working late), will try tomorrow (Saturday), or Monday for sure. Will PM you the tracking number.

Here's what I'm sending:

@scottalanmiller said in What Are You Doing Right Now:

What's up with this guy? https://community.spiceworks.com/topic/1993811-scale-computing-scam

Lol. There should be a minimum age of 8 required to post on SW imo.