Check execution policy to allow you to run PowerShell scripts: <\/p>\n
Get-ExecutionPolicy
\nTo allow yourself to execute powershell script:
\nSet-ExecutionPolicy RemoteSigned
\nor
\nSet-ExecutionPolicy AllSigned
\nor
\nSet-ExecutionPolicy Unrestricted<\/p>\n
Display all users login script:
\nPS> Get-Aduser -Filter * -Properties ScriptPath<\/p>\n
Map a network drive using PowerShell:
\n(New-Object -com WScript.Network).MapNetworkDrive(“Y:”,”\\\\servername\\sharename”)<\/p>\n
Help New-PSDrive -full<\/p>\n
Manage PowerShell drives:
\nGet-PSDrive<\/p>\n
PS C:\\Scripts> Get-PSDrive<\/p>\n
Name Used (GB) Free (GB) Provider Root
\n—- ——— ——— ——– —-
\nAlias Alias
\nC 45.88 187.01 FileSystem C:\\
\ncert Certificate \\
\nEnv Environment
\nFunction Function
\nG 1113.88 282.94 FileSystem G:\\
\nHKCU Registry HKEY_CURRENT_USER
\nHKLM Registry HKEY_LOCAL_MACHINE
\nI 1113.88 282.94 FileSystem I:\\
\nS 1113.88 282.94 FileSystem S:\\
\nU 302.15 47.85 FileSystem U:\\
\nV 1113.88 282.94 FileSystem V:\\
\nVariable Variable
\nWSMan WSMan
\nY 592.14 431.73 FileSystem Y:\\
\nZ 592.14 431.73 FileSystem Z:\\<\/p>\n
This only remove drives available in the PowerShell environment.<\/p>\n
Remove-PSDrive -Name name
\nPS C:\\Scripts> Remove-PSDrive -Name Y<\/p>\n
To determine the PowerShell version:
\nPS H:\\> $Host.Version<\/p>\n
Hyper-V Related Commands<\/strong> To shutdown all VMs: Or, shutdown one VM: You can even use an * wildcard. To export all VMs: Example: Or, you can use the following to export all your VMs ( After you stop them, of course.): To import\/restore a VM: Example: To start a VM: Wildcard to start as well: Access information about files and directories: To list all the Properties, use: Another way to determine disk size and free space: To determine physical memory installed: To determine processor installed: To list local user accounts on a machine: Send email: To run from a script or Task Scheduler, put the command in a ps1 file like Email.ps1, then in the script put: powershell c:\\…\\Email.ps1. Works great. You could associate ps1 with powershell and forgo the powershell command as well.<\/p>\n Get a list of computers from AD: This will give you a list of all computers and their operating system, version and service pack level: PowerShell to access a remote machine’s registry: PS> Get-RegValue -ComputerName COMPUTERNAME<\/em> -Key “KEYNAME<\/em>” -Value VALUENAME<\/em><\/p>\n Here is an example. This will pull the value from the LOCAL MACHINE hive: How to find all LockedOut ADS accounts: To unlock and account: Unlock script sample:<\/p>\n CLS To list the file permissions of all files and directories under a directory:<\/p>\n PS> Get-ChildItem -Recurse directory<\/em> | Get-Acl | Format-List<\/p>\n","protected":false},"excerpt":{"rendered":" Check execution policy to allow you to run PowerShell scripts: Get-ExecutionPolicy To allow yourself to execute powershell script: Set-ExecutionPolicy RemoteSigned or Set-ExecutionPolicy AllSigned or Set-ExecutionPolicy Unrestricted Display all users login script: PS> Get-Aduser -Filter * -Properties ScriptPath Map a network drive using PowerShell: (New-Object -com WScript.Network).MapNetworkDrive(“Y:”,”\\\\servername\\sharename”) Help New-PSDrive -full Manage PowerShell drives: Get-PSDrive PS C:\\Scripts> [&hellip<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[238,293],"class_list":["post-789","post","type-post","status-publish","format-standard","hentry","category-documentation","tag-hyper-v","tag-powershell"],"share_on_mastodon":{"url":"","error":""},"_links":{"self":[{"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/posts\/789","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=789"}],"version-history":[{"count":25,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/posts\/789\/revisions"}],"predecessor-version":[{"id":1559,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/posts\/789\/revisions\/1559"}],"wp:attachment":[{"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=789"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=789"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=789"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\nTo display all VMs:
\nPS> get-VM<\/p>\n
\nPS> get-VM | stop-VM<\/p>\n
\nPS> stop-VM -Name VMNAME<\/em><\/p>\n
\nThis will only stop all VMs with CANADA in the name:
\nPS> stop-VM -Name ‘*CANADA*’<\/p>\n
\nPS> export-VM VMNAME<\/em> -Path ‘EXPORTDIRECTORY<\/em>‘<\/p>\n
\nPS> Export-VM VMWIN2012 -Path ‘D:\\Exports’<\/p>\n
\nPS> Get-VM | Export-VM -Path ‘EXPORTDIRECTORY<\/em>‘<\/p>\n
\nPS C:\\> Import-VM -Path ‘XMLfile<\/em>‘<\/p>\n
\nPS E:\\> Import-VM -Path ‘E:\\MYVMs\\Virtual Machines\\5FBF3F53-0A55-4124-883E-6F149A1E731E.XML’<\/p>\n
\nPS> Start-VM -Name VMNAME<\/em><\/p>\n
\nPS> start-VM -Name ‘*CANADA*’<\/p>\n
\nThis will display the file\/directory name and what has access to it:
\nPS> Get-Childitem -LiteralPath somedirectory<\/em> -Recurse | Get-Acl | Format-List -Property PSPath,AccessToString<\/p>\n
\n -Property *<\/p>\n
\nPS> Get-WmiObject Win32_LogicalDisk -ComputerName remotecomputer | Select-Object DeviceID,Size,FreeSpace<\/p>\n
\nPS> Get-WmiObject CIM_PhysicalMemory<\/p>\n
\nPS> Get-WmiObject CIM_Processor<\/p>\n
\nPS> Get-WmiObject -Class Win32_UserAccount -Filter “LocalAccount=’True'” -Computername computername<\/em><\/p>\n
\nPS> Send-MailMessage -to ToEmailAddress<\/em> -Subject “SomeSubject<\/em>” -body “BodyTest<\/em>” -smtpserver EmailServer<\/em> -from FromEmailAddress<\/em><\/p>\n
\nThis will display all computers in AD that begin with the letter A:
\nPS> Get-ADComputer -Filter ‘samAccountName -like “A*$”‘ | Select Name<\/p>\n
\nPS> Get-ADComputer -Filter ‘samAccountName -like “*$”‘ -Property * | Format-Table Name,OperatingSystem,OperatingSystemServicePack,OperatingSystemVersion<\/p>\n
\nNote: I did this on a Windows 10 machine. Everything needed to be done from an elevated PowerShell prompt.
\nYou need to download and install the PSRemoteRegistry powershell module from https:\/\/psremoteregistry.codeplex.com\/.
\nOnce installed, you need to import the module:
\nPS> Import-Module PSRemoteRegistry<\/p>\n
\nPS> Get-RegValue -ComputerName COMPUTERNAME -Key “SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon” -Value CachedLogonsCount
\nSet a Value on a remote computer using the same PSRemoteRegistry module:
\nPS> Set-RegString -Computer COMPUTERNAME<\/em> -Key “SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon” -Value CachedLogonsCount -Data “0”<\/p>\n
\nPS> Get-ADUser -LDAPFilter “(objectClass=User)” -Properties Name,LockedOut | Select Name,LockedOut | findstr “True”<\/p>\n
\nPS> Unlock-ADAccount -Identity SamAccountName<\/em><\/p>\n
\n$logfile = “\\\\servername<\/em>\\C$\\Tools\\UnlockAccounts-$(Get-Date -Format `”yyyyMMdd`”).log”
\nfunction MyLog($somestring)
\n{
\n $somestring | Out-File -Filepath $logfile -append
\n}
\nWrite-Host “Below is a list of currently locked out accounts:”
\nGet-AdUser -LDAPFilter “(objectClass=User)” -Properties SamAccountName,LockedOut | Select SamAccountName,Lockedout | findstr “True”
\n$Acct = Read-Host -Prompt ‘Which account would you like to unlock’
\nIf ($Acct)
\n{
\n Write-Host “Attempting to unlock ‘$Acct'”
\n Unlock-ADAccount -Identity $Acct
\n MyLog “$(Get-Date -Format `”MM\/dd\/yyyy hh:mm:ss tt`”) Unlock attempted for account: $Acct.”j
\n}
\nElse
\n{
\n Write-Host “No account was entered.”
\n}
\nPAUSE<\/p><\/blockquote>\n