Setup: ADFS 2.0 server configured Problem: The default rule “Send LDAP attributes as Claims” will add sAMAccountName attribute for every group in Claim token. If group name and sAMAccountName are different, you need custom rules to populate the Claim with group names. Solution: Create the following two custom rules:
Category: System Administration
Compare group membership of two users in Powershell
Setup: Member server in Active Directory domain Problem: You need to compare group membership of two users Solution: Run this command in PowerShell The get-hash is a PowerShell hash function . Get-QADUser cmdlet is part of ActiveRoles
IBM IMM (Integrated Management Module) Defult Username and Password
Setup: Fresh installation of IBM xServer Problem: After installation you want to update to latest firmware. Solution: Start C:\IBMToolsCenterSuite\run.bat and you need to login to IBM ToolsCenter Suite. Use local administrator user and password. If doesn’t work try to login on the machine as local administrator instead of domain user and pass. For remote connection […]
Retrieve passwords from IIS Application Pool with PowerShell remotely
Setup: Server with IIS installed and a remote computer with PowerShell Problem: IIS store the Application Pool Account password un-encrypted and is trivial to retrieve it. If you want to list all application pool accounts and their passwords use the following PowerShell command. You can even scan entire network/domain and make a list will all […]
Fix .NET error – There is no compatible TransportManager found for URI
Setup: Existing WCF service published with net.tcp bindings Problem: You receive this error There is no compatible TransportManager found for URI ‘net.tcp://WCFService/WCFService.svc’. This may be because that you have used an absolute address which points outside of the virtual application, or the binding settings of the endpoint do not match those that have been set […]
Find LastLogon date on a server for all local and domain users
Setup: A Windows server member of a domain or workgroup Problem: You need LastLogon date for all the users who ever logged in on that server. Solution: Open PowerShell console and run this script:
Copy claim rules from one Relying Party to another in ADFS 2.0
Setup: Existing ADFS 2.0 installation Problem: You create a new Relying Party Trust and want to copy all the claim rules from existing Relying Party Solution: Open Power Shell console and run this code After that issue the folowing command: Tips: Run this command to find out all RP names:
Query HP server Storage Array details remotely via WMI and WBEM
Setup: A HP server with Windows OS and WMI enabled. Latest WBEM drivers installed. Problem: You want to query server details regarding the Storage Array Controller and disks installed. Solution: Run this PowerShell script from a remote computer.
Update/Replace the certificate of Trusted Identity Provider in SharePoint 2010/2013
Setup: You have a SharePoint farm with web applications configured to use a Trusted Identity Provider aka. ADFS 2.0 Problem: The signing certificate of Trusted Identity Provider expired and you need to change it. Solution: Run these commands in SharePoint Shell on SharePoint server: Note. Replace ADFS from ?{$_.name -match “ADFS“} with the name of […]
Add new realm to existing trusted identity provider in SharePoint 2010/2013
Setup: You have a SharePoint farm with an web application configured to use ADFS 2.0 for authentication via Trusted Identity Provider. Problem: You want to add another web application to this SharePoint farm and configure the authentication via ADFS Solution: Open SharePoint PowerShell and issue the following commands: where appname is the alias of your […]