This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#requires -Version 1.0 | |
function Set-EnableStrongSSLConfig | |
{ | |
<# | |
.SYNOPSIS | |
Make IIS SSL Config more secure | |
.DESCRIPTION | |
Enales a stronger SSL configuration in IIS |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/usr/bin/env bash | |
### | |
# | |
# office2016_postinstall.sh | |
# | |
# This little helper suppresses the "What’s New" dialog for Office 2016 apps, | |
# and it also prevents the transfer of the telemetry data to Microsoft. | |
# Outlook 2016 and OneNote need an addition setting; | |
# The script takes care about that! |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<# | |
Tweaked Version that prevents the Auth Pop-Up on non Windows devices a bit better | |
These Devices should get the regular Forms based (HTML Page) instead. | |
I was asked: Nope, 'Mozilla/5.0 (Windows NT' is correct, not an error ;-) | |
#> | |
# Execute this on your ADFS Server | |
# If you have more then one, use your primary ADFS server, this is essential! | |
Set-ADFSProperties -ExtendedProtectionTokenCheck None |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#requires -Version 3.0 -Modules Storage | |
# Get all Physical Disks | |
<# | |
.SYNOPSIS | |
Create a new Storage Space for my Hyper-V Server | |
.DESCRIPTION | |
Creates a new Storage Space with a SSD and a HDD Tier for my Hyper-V Server | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<# | |
.SYNOPSIS | |
Fix Exchange Migration Endpoint Proxy | |
.DESCRIPTION | |
Disable and enable MRSProxyEnabled on the Exchange WebServicesVirtualDirectory | |
.NOTES | |
I had an issue while enable a hybrid deployment. | |
The Wizard enabled it (as he should), but then failed during the test. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Turn off Certificate Rollover | |
Set-AdfsProperties -AutoCertificateRollover $false | |
# Allow Login via Mail (And UPN) | |
Set-AdfsClaimsProviderTrust -TargetIdentifier "AD AUTHORITY" -AlternateLoginID mail -LookupForests $ADDom | |
<# | |
Enable SNI (Might be needed) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Protect all existing OUs in your domain from accidental deletion | |
# As required from the Active Directory Best Practices Analyzer (BPA) | |
Get-ADOrganizationalUnit -filter * -Properties ProtectedFromAccidentalDeletion | Where-Object -FilterScript { | |
$_.ProtectedFromAccidentalDeletion -eq $false | |
} | Set-ADOrganizationalUnit -ProtectedFromAccidentalDeletion $true |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<# | |
Modify all Primary DNS Zones | |
#> | |
# Defaults (Check this) | |
$NoRefreshInterval = New-TimeSpan -Days '7' | |
$RefreshInterval = New-TimeSpan -Days '7' | |
$ScavengingInterval = New-TimeSpan -Days '4' | |
# Select the DNS Zones to modify |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Get-DnsServerRootHint | Remove-DnsServerRootHint -Force | |
# Might be a good idea if you use forwarders (e.g. Google DNS, OpenDNS, or others) | |
# I remove them because I use a a Linux based DNS Servers as forwarder. They run a caching Name Server based on unbound. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
function invoke-DisableNetbiosOnServers | |
{ | |
<# | |
.SYNOPSIS | |
Disables the NetBIOS of all NICs on all servers within the AD | |
.DESCRIPTION | |
Disables the NetBIOS of all NICs on all servers within the AD and Unchecks the DNS registration of all non AD pointing NICs (based on the IP Address) | |
.EXAMPLE |