20140419-MCSA 2012 Server R2 Command
1.Get-ADUserGets one or more Active Directory users.
EG:(GET-ADUSER –Identity User1 –Properties MemberOf | Select-Object MemberOf).MemberOf
Returns one or more user objects.
This cmdlet returns a default set of ADUser property values. To retrieve additional ADUser properties, use the Properties parameter.
To get a list of the default set of properties of an ADUser object, use the following command:
Get-ADUser <user>| Get-Member
To get a list of the most commonly used properties of an ADUser object, use the following command:
Get-ADUser <user> -Properties Extended | Get-Member
To get a list of all the properties of an ADUser object, use the following command:
Get-ADUser <user> -Properties * | Get-Member
2. Domain
[*] Install-ADDSDomainController – Creates a new domain controller in an existing domain.
[*] Install-ADDSDomain – Creates a new domain in an existing forest.
[*] Install-ADDSForest – Creates a new forest.
[*] Djoin.exe command:offline join the perimeter network
[*] Add-computer cmdlet:Add local computer to workgroup or domain
[*] dsadd.exe command:add specific types of objects to the domain
[*] New-ADComputer cmdlet : creat new AD computer
3.Netlogon.dns
Create a log file that contain all the locator resource record
4. Server GUI Shell Remove
No IE , taskbar explorer or control panel
5.DISM
Deployment Image Servicing and Management (DISM)
6.Security options/setting
renameaccount,Account setting
7.Application control policy executable rule
for .exe,publisher, product name, file name, file version
8.GPO administrative template
The GPOs are stored in the SYSVOL folder. The SYSVOL folder is automatically replicated to other domain controllers in the same domain. configure central store for GPO administrative template
EG sysvol\(domain name)\policies
9.redircmp.exe
Redirects the default container for newly created computers to a specified, target organizational unit (OU) so that newly created computer objects are created in the specific target OU instead of in CN=Computers.
10.*** PPTP tunnel
enable inbound rule for protocol 47
TCP port 1723
页:
[1]