|
Alright, here's a rabbit hole I threw myself down today for no good reason: Every now and then somebody wants to know who all is on the receiving end of a group address in out Google Apps environment. This is pretty simple, but we have some groups that contain groups, and this can go down 2-3 levels. (Ex: the devs@company.com group sends to a few individuals, and also to the product@company.com group, which in turn contains the product.interns@company.com group, which is only users) I wrote a script using gShell that went down a level to grab all of the users, but it doesn't really present the information properly (doesn't show what groups people are in, just that they'd get a message sent to the top-level address) and only goes down one level. To resolve the latter issue, I whipped up a recursive function where I feed the highest level group name into: code:This does the job as far as spitting out a list of the actual groups and then the users in all of them. But it takes a while to do it, so I was trying to make it actually create the group membership lists at it ran so I didn't have to take the output of this and then feed it through another function to get my output that I can send to whoever asked. I figured the "easiest" thing would be to make a hash table, where the key is the group name and the value is an array with the user accounts. But I have no idea how to do that, if it's even possible. I tried to get it going, but the problem is that since $AcctName is getting fed everything, even the users, it just creates a key for each user, with the value of themselves, and then a key for each group that's empty. Is it even possible to do what I'm suggesting here? EDIT: whatis is the only thing I miss from GAM but boy do I miss it sometimes. Inspector_666 fucked around with this message at 23:41 on Jan 26, 2017 |
#
¿
Jan 26, 2017 23:26
|
|
|
|
| # ¿ Apr 29, 2024 03:47 |
|
|
anthonypants posted:The gShell wiki helpfully leaves out what the commands' outputs look like, so what does Get-GAGroupMember return, and why does it have a ToArray() method? The output is: code:code:Practically all of gShell's documentation is procedurally generated, it sucks.
|
|
#
¿
Jan 27, 2017 01:09
|
|
|
anthonypants posted:Are Role or Type useful?  Jesus loving Christ I can't believe I didn't think of the TYPE field. Groups are Type: GROUP, to the shock of nobody. Well hey I got to play with a recursive function! (I'm going to blame this on my original script just making GBS threads out the membership of the top-level group into a csv and never thinking about why I was actually doing that conversion all the way out.)
|
|
#
¿
Jan 27, 2017 01:16
|
|
|
Avenging_Mikon posted:How would I make this recursive in a range, or say all of the ones I'm interested in start with XYZ, and do all those without running the command 30 times? Is the range a list of given groups? If so, make an array containing them ($grouplist = "group1", "group2", "group3") and then put that one-liner in a foreach. code:If you want all of the groups to dump into one CSV, add "-append" to the end of the Export-Csv command, if you want different CSVs for each group, make it "C:\path\to\$group.csv You can also automagically pull the groups by starting with a code: )
Inspector_666 fucked around with this message at 23:52 on Feb 8, 2017 |
|
#
¿
Feb 8, 2017 23:44
|
|
|
Zaepho posted:Do you want the Group's email address or the users in the groups' email addresses? If your environment has a lot of groups you're gonna want to filter in the Get-ADGroup cmdlet, not in a separate where-object. Even if it doesn't, you should still do it. Filter left!
|
|
#
¿
Feb 8, 2017 23:58
|
|
|
Zaepho posted:You're right. I'm terrible about filtering in the AD commandlets. I can NEVER get it right without a few tries. I'm the same, I always try to cram a -match or -include in there before I remember -like is about as fancy as I can get.
|
|
#
¿
Feb 9, 2017 00:08
|
|
|
Briantist posted:For those of you in NYC: I'm presenting at the NYC PowerShell meetup at Microsoft in Times Square on Monday Feb 13. Ugh, Times Square. But hey, free pizza and the topics sound pretty interesting.
|
|
#
¿
Feb 10, 2017 16:39
|
|
|
thebigcow posted:You can make functions that themselves behave like cmdlets. https://technet.microsoft.com/en-us/library/hh360993.aspx When you do stuff like this, is the best way to get it into your workflow to add a Set-Alias line to your profile.ps1 file? That's what I've been doing with my scripts but it seems hack-y.
|
|
#
¿
Feb 15, 2017 23:53
|
|
|
The Fool posted:Make your own modules. Welp, guess it's time to learn a thing.
|
|
#
¿
Feb 16, 2017 00:48
|
|
|
Walked posted:Well worth learning. Apparently all I had to do was add two lines to the existing script, rename it something that fits with the proper verb-noun style, save it as a .psm1 in the right place, and then import it the usual way. I know there's the whole manifest file and I need to actually write proper help documentation for stuff, but that was a lot easier than I was expecting.
|
|
#
¿
Feb 16, 2017 17:02
|
|
|
Briantist posted:Yeah modules are the way to go. Ensure they are well-formed modules with proper paths and manifests and then put them in a path that's included in variable cheese-cube mentioned, that way you can import them by name only. Oh dag, that's cool as hell. I'm definitely going to look into breaking the existing scripts down into future modularity like this. I'll probably also have to dive into the manifest files for my new hire script since it involves a lot of csv lookups and exporting stuff, and there's currently a lot of $PSScriptRoot scattered around a couple of other ones. Inspector_666 fucked around with this message at 19:39 on Feb 16, 2017 |
|
#
¿
Feb 16, 2017 19:35
|
|
|
Briantist posted:Do you do a whole try {} catch {} around it? Doesn't #Requires always stop the script if it fails? Seems like anything else would kind of defeat the purpose.
|
|
#
¿
Feb 16, 2017 20:17
|
|
|
There's Office and StreetAddress, but yeah, no PhysicalDeliveryOfficeName. Just do a Get-Aduser your.name -properties * to double check.
|
|
#
¿
May 19, 2017 20:01
|
|
|
Wait crap no I can't  I swear I'll get to another meetup one of these days! Inspector_666 fucked around with this message at 21:06 on Jul 10, 2017 |
|
#
¿
Jul 10, 2017 15:54
|
|
|
I used to have a script that was a wrapped around GAM, and I had to write the commands like so:code:Note that error handling in this case requires you to scrape the output for the codes though. (I've since re-written it using gShell which makes my life much easier even if there are some API hooks missing from that module.) *Is that right? I'm pretty sure I just lifted that workaround wholesale from Stack Overflow. Inspector_666 fucked around with this message at 22:00 on Jul 24, 2017 |
|
#
¿
Jul 24, 2017 21:58
|
|
|
In my user termination script, I have a variable $findUser that's just the result of code:Then to move them into the Disabled User Accounts OU is: code:I think that you might be over-defining the identity in the example line you posted, but piping the object from Get-ADObject works. EDIT: I use the $findUser variable elsewhere in the script (removing from groups, disabling, password reset, etc), it's a good kind of "catch-all" for the AD identity for everything I need to do. Inspector_666 fucked around with this message at 20:34 on Aug 29, 2017 |
|
#
¿
Aug 29, 2017 20:31
|
|
|
nielsm posted:Or splat it: Do this, it's the preferred method to ` from everything I found.
|
|
#
¿
Dec 29, 2017 23:39
|
|
|
scuz posted:Real simple one for y'all cuz I'm super new to PowerShell. I assume you're using Get-Service to check the status? If so, you'd just need an if block that checked (Get-Service MpsSvc).status to see if it was "Running" or something else. code:code:Inspector_666 fucked around with this message at 17:22 on Jun 20, 2018 |
|
#
¿
Jun 18, 2018 14:55
|
|
|
PBS posted:You're missing a closing " on line 4. Aha, I see my clever check to make sure people aren't just blindly copy-pasting code into their terminals worked! Whoops, fixed it.
|
|
#
¿
Jun 20, 2018 17:23
|
|
|
I might be easier to just code:
|
|
#
¿
Oct 4, 2018 18:00
|
|
|
You can try scoping the variable with $global:description or $script:description depending on what's defining it? (I'd start with $script: if it's possible.)
|
|
#
¿
Nov 12, 2018 18:17
|
|
|
I'm not 100% but I'm pretty sure you only ever want to use "Format-List" to make something human readable rather than when you're trying to pipe the value around.
|
|
#
¿
Dec 31, 2018 01:00
|
|
|
TITTIEKISSER69 posted:I need to find out how many AD users in a certain OU have extensionAttribute7 populated, and export this to a .csv file. I'm sure it'll start with Get-ADuser, but as a newb to this I'm having trouble fleshing out the rest. Can anyone help? code:EDIT: to answer the question of how to search in a specific OU, use the -SearchBase flag in Get-ADUser with the distinguished name of the OU.
|
|
#
¿
Jan 22, 2019 19:19
|
|
|
The Fool posted:Instead of I always forget the correct syntax for -Filter, thanks for this. I was trying to concoct a much more complicated loop to check the values and make an array, etc. Inspector_666 fucked around with this message at 19:39 on Jan 22, 2019 |
|
#
¿
Jan 22, 2019 19:36
|
|
|
CzarChasm posted:I'm on 4.0, thought I was on 5. I'll do the update to 5 after the weekend and see if that fixes it. Try code:Inspector_666 fucked around with this message at 18:25 on Dec 27, 2019 |
|
#
¿
Dec 27, 2019 18:23
|
|
|
I mean yeah, update PShell regardless, but even in 5.1 I have to use the piped command.
|
|
#
¿
Dec 27, 2019 19:51
|
|
|
Ok this is probably a dumb question that I am not googling correctly but: Is there a way I can get the Exchange Online cmdlets to populate in VSCode so I can tab-complete them/the parameters while working on scripts? For example Get-CalendarProcessing or Get-User and the like?
|
|
#
¿
Jan 24, 2020 23:09
|
|
|
Toast Museum posted:I tried it just now. After running Install-Module ExchangeOnline from PowerShell, Intellisense includes the module's cmdlets in VSCode without any additional configuration. Do you have the PowerShell extension installed in VSCode? Yep, that did it. I knew it was something dumb I wasn't thinking of. I seldom use the integrated PS terminal so I always forget about it.
|
|
#
¿
Jan 24, 2020 23:41
|
|
|
I'm back again with a dumb question I can't properly articulate into Google. I'm trying to generate a list of all of our groups in O365 along with their owner(s). That's easy enough: code:The output is Full Name Full Name, so I guess it might just be easier to convert the CSV into a proper Excel file and just do the string manipulation there.
|
|
#
¿
Feb 10, 2020 22:19
|
|
|
The Fool posted:Maybe a calculated property? Yeah, I was poking around in here but I had trouble getting the actual values to spit out instead of the class, and making the whole collection into a variable is specifically warned against in the Powershell output since the Get-Group return is almost 4000 items. I think working with the values in Excel is going to be the best way forward.
|
|
#
¿
Feb 10, 2020 22:38
|
|
|
Ideally I would just want 2 cells for the ManagedBy value, one with each name (yes, that's the "Owner" I'm talking about.) Pretty much in my perfect world it would just feed the array into the CSV as is, the comma would split the value into 2 cells and I could just add another column header in the final output.
|
|
#
¿
Feb 10, 2020 22:53
|
|
|
FISHMANPET posted:Hmm, that doesn't seem very useful for doing anything but handing to humans to read (and I don't think calculated properties can do a dynamic number of properties anyway) so Excel may be your best bet. Yeah I may just keep playing with the data to get that max number, I doubt it's very high. The idea here is initially just getting it looked at by humans, but I figured if it was multiple cells on one line I can just reverse whatever split there is to feed it back into the system in the future if need be. Also that's good to know about the variable, Powershell pops up a warning over 1000 objects and I just didn't want to accidentally nuke the remote box I'm working on.
|
|
#
¿
Feb 10, 2020 23:12
|
|
|
Ok I checked and at least one group has 31 values in the ManagedBy field so yeah I think I may have gotten out in front of the issue. Thanks for your help though.
|
|
#
¿
Feb 10, 2020 23:30
|
|
|
TITANKISSER69 posted:I'm thinking it would be more like the example linked here: https://community.spiceworks.com/topic/2232835-remove-member-from-delivery-management-with-exhange-powershell I'm not sure if you can wildcard that line, but you should be able to use Get-DistributionGroup -Filter or maybe -Anr to put the list into a variable you can then go through with a ForEach loop.
|
|
#
¿
May 27, 2020 16:57
|
|
|
It should also be pretty straightforward, use Get-ADUser with whatever filter you need to grab your disabled users to generate the list of mailboxes to check, then use Get-Mailbox to find which ones are forwarding to the oldmanager. I'd probably put that output into a CSV to easily see what you're working with and then you can run the final script against it, which should just be a Set-Mailbox command.
|
|
#
¿
Mar 2, 2021 23:14
|
|
|
Send-Mailmessage is how you'd send the mail, too. Although apparently MS says you shouldn't use it, they also don't have a replacement so v0v EDIT: Oh, I guess MailKit is the unofficial-but-still-MS-maintained solution now? Inspector_666 fucked around with this message at 06:53 on Nov 27, 2021 |
|
#
¿
Nov 27, 2021 06:51
|
|
|
Had to dick around with the Slack API today and looking at the flags available for Invoke-RestMethod in 7.2 got me to install it and it's much nicer even though the API doesn't support the cool pagination stuff.
|
|
#
¿
Nov 30, 2021 01:27
|
|
|
I think the easiest thing would be to just use the Test-Path part in a simple if statement in the directory creation segment of the script rather than trying to integrate it into the switch.
|
|
#
¿
May 25, 2023 04:02
|
|
|
|
| # ¿ Apr 29, 2024 03:47 |
|
|
FISHMANPET posted:Lol, ask any psgsuite questions you have. I'm, uh, one of the maintainers. In particular I've done a bunch around spreadsheets specifically. God, this rules. I don't need Gsuite integration anymore since I'm in an O365 place now, but I remember back when I was learning how to use Powershell I was having to write my own wrappers for GAM that was scraping the text output for error codes and poo poo.
|
|
#
¿
Jul 8, 2023 22:04
|
|