KentNordstrom’s gists

## HelloForBusinessPermissionsOnAdminSDHolder.ps1
<#
    .SYNOPSIS
    Script to give Azure AD Connect Permission on Protected users that want to use Hello For Business in Hybrid Deployment.
    Gives read/write to msDS-KeyCredentialLink and msDS-ExternalDirectoryObjectID by setting permissions on AdminSDHolder container.
#>

PARAM([string]$SyncUser="MSOL_1234ABC56")

$ADDomain = Get-ADDomain

## DeltaRun.ps1
<#
    .SYNOPSIS
    Script to run Synchronization of MIM.
    Requires the LithnetMiisAutomation PowerShell module from https://github.com/lithnet/miis-powershell

    .NoExport
    Parameter that will disable Exports to External Systems. Only FIMService will receive Exported data.
#>

PARAM([bool]$NoExport=$false)

## WaitForWF.ps1
<#
	.SYNOPSIS
	Script that waits for WF triggered by requests.
	Used in Schedules to get dynamic sleep time before importing results after export to FIM Service.
	Default Creator is Built-in Synchronization Account.
	Requires the LithnetRMA PowerShell module from https://github.com/lithnet/resourcemanagement-powershell
#>

PARAM(
	[string]$Creator = 'fb89aefa-5ea1-47f1-8890-abe7797d6497',

## EnableHybridReportingInMIM.ps1
<#
	.SYNOPSIS
		Script to manually configure MIM 2016 Hybrid Reporting without installing the Agent as described in
		https://docs.microsoft.com/en-us/microsoft-identity-manager/working-with-identity-manager-hybrid-reporting
#>

# Step 1. Create the EventLog to store the MIM Request Events in.
New-EventLog -LogName "Identity Manager Request Log" -Source "Microsoft.IdentityManagement.Service"

# Step 2. Add hybrid reporting setting in FIMService config file. Setting hybridReportingRequestLoggingEnabled="true"

## CreateSyncStatisticDB.ps1
<#
    .SYNOPSIS
        Script that creates SQL DB to store Pending Exports in MIM MAs into SQL for Statistical analysis.
#>

PARAM([string]$SQLServer = "dbFIMSync", [string]$DBName = "FIMSyncStatistics",[string]$ScheduleAccount="AD\svcMIMAdmin")

#region Modules
Import-Module LithnetMIISAutomation
Import-Module SqlServer

## BeginImport.ps1
param (
    [System.Collections.ObjectModel.KeyedCollection[[string], [Microsoft.MetadirectoryServices.ConfigParameter]]] $ConfigParameters,
    [PSCredential] $PSCredential,
    [Microsoft.MetadirectoryServices.OpenImportConnectionRunStep] $OpenImportConnectionRunStep,
    [Microsoft.MetadirectoryServices.Schema] [ValidateNotNull()] $Schema
    )

[string]$watermark = $OpenImportConnectionRunStep.CustomData #Used if Delta Import

if($OpenImportConnectionRunStep.ImportType -eq 'Delta' -and !$watermark){throw ("Full Import Required. No watermark found.")}

## RemoveMultiValueValues.ps1
<#
    .SYNOPSIS
        Script to remove values from MultiValue attribute based on search criteria.
#>

PARAM(
    [string]$MultiValueAttribute = 'emailAlias',
    [ValidateSet("StartsWith","EndsWith","Equals")]
    [string]$SearchType,
    [string]$SearchValue = '@domain.onmicrosoft.com',

## SetDBAlias.ps1
<#
    .SYNOPSIS
        This script adds/updates SQL Aliases on the local machine.
        It can be implemented as function in your deployment scripts when installing FIM/MIM
        or other application using SQL Aliases.
#>
PARAM([string]$AliasName,[string]$TargetServer,[string]$TargetPort="1433")

#Alias to be added to local machine
$dbAlias = "DBMSSOCN,$TargetServer,$TargetPort"

## BulkUpdateFromCsv.ps1
<#
    .SYNOPSIS
        Example script to bulk update users from CSV file.
        The CSV file needs to have columnnames in row 1.
        Columnnames need to correspond to the attribute name in FIM/MIM.
        The column specified as "anchor" will not be updated all other columns will be updated based on content in csv file.
        Multivalue and Reference data types are not supported in this version.
        The script requires that the Lithnet Power Shell module is installed on the computer running the script.
        The account running the script requires write permission to all attributes in the csv file except for the anchor attribute.
#>