Duplicating your production AAD Connect sync rules on your staging server using the AAD Connect Helper Module

Once upon a time, migrating your AAD Connect primary sync server configuration to your staging server was a simple matter of using the Get-ADSyncServerConfiguration and Set-ADSyncServerConfiguration cmdlets provided as part of the ADSync module. However, in the most recent versions of AAD Connect (v 1.1.751 and later) the Get-ADSyncServerConfiguration cmdlet still works, however the Set-ADSyncServerConfiguration…

0

PowerShell Test-Transcription

Recently I needed a way to test if transcription was running, and sadly all the articles I found with my Bing searches provided methods that don’t work.   Largely due, I suspect, to varied PowerShell version differences. I decided therefore, to write a Function that can be used to test transcription.  It basically tries to stop Transcription,…

0

Testing AAD Connect Write-Back permissions on an OU

When installing and configuring AAD Connect with Exchange Hybrid and any of the other special features (Group Writeback, Password Writeback, Device Writeback), it’s necessary to delegate service account permissions in Active Directory to allow the features to work properly. Those permissions apply to features like : Exchange Hybrid Write-back, Password Write-back, Group Write-Back, Device Write-Back and…

0

DN value in AAD Sync AAD Connect – the NEW format

DirSync \ FIM used to use the Immutable ID value in the Azure connector space, making it somewhat straightforward to search for objects in the Azure CS using the ImmutableID (either copied from MSOL powershell or from the onprem AD ObjectGUID value converted to a Base64 string), however in AAD Sync and AAD Connect the…

4

Powershell, The Clipboard, and re-living the past …

One of my favorite Powershell features is the ability to export the output of pretty much anything to the clipboard using | clip I've found that piping to clip is much easier than trying to export output to a TXT or CSV file, then finding and opening the file… For those of you who are…

2

msExchRemoteRecipientType

When dealing with attributes synced to O365 via FIM \ DirSync \ AAD Sync, you will frequently encounter the msExchRemoteRecipient type attribute, previously empty in on-prem Exchange (only msExchRecipientTypeDetails and msExchRecipientDisplayType had values) the msExchRemoteRecipientType will have the following values depending on the object type and how the mailbox and archive were enabled \ moved…

5

Get-MSOLUserWithValidationError

I sometimes find that the validation error detail in the portal is less than helpful, and getting the verbiage from powershell can be a bit tricky, so I wrote the following Powershell function that will output all the Azure objects with a more human-readable version of the validation errors for each account…   function Get-MSOLUserWithValidationError…

0

Get-O365user.ps1 = MSOLuser and EXOUser and EXOMailUser or EXOUserMailbox attributes combined!

Have you ever been troubleshooting Exchange Online (EXO) and MSOnline (Azure) objects and wished there was a way to aggregate all the data together into a single object that you could manipulate either via script or pipeline, output via FT, manipulate or otherwise report on?   The following script will accept either UPN or ObjectID, locate…

0

Ugly GALsync

I often ( frequently, not someone who has lost his parents* ) find that while I am testing FIM joins and attribute flows, I would like to maintain contact objects in forest B for the users I am creating if forest A, or vice versa. Rather than setup FIM to do classic GALsync, since I…

0

So what comes after the …

If you're like me, you constantly find yourself running powershell scripts and one or more array never returns the full list, it adds that pesky … whether or not you try the FT -wide – autosize or FL and you never get the whole list.   This truncation of long output is the function of…

0