What’s new in AD cmdlets 1.1.0?

Here’s a quick summary of the new and exciting features added in Quest’s free AD cmdlets 1.1.0 just published on the web (I plan to provide more details and examples next week):

1. Get-QADGroupMember -Indirect – this new parameter allows you to retrieve complete group membership for nested AD groups in one command!

2. Permission management cmdlets:

• Get-QADPermission,
• Add-QADPermission,
• Remove-QADPermission,
• Get-QADObjectSecurity,
• Remove-QADObjectSecurity.

3. New parameters of Get-QADUser:

• HomeDirectory (string)
• HomeDrive (string)
• ProfilePath (string)
• LogonScript (string)
• Email (string)
• AccountExpiresBefore (DateTime)
• AccountExpiresAfter (DateTime)
• AccountNeverExpires (bool)
• PasswordNeverExpires (bool)

4. New parameters of Set-QADUser

• HomeDirectory (string)
• HomeDrive (string)
• ProfilePath (string)
• LogonScript (string)
• Email (string)
• AccountExpires (DateTime, nullable)
• PasswordNeverExpires (bool)
• UserMustChangePassword (bool)
• TsProfilePath (string)
• TsHomeDirectory (string)
• TsHomeDrive (string)
• TsWorkDirectory (string)
• TsInitialProgram (string)
• TsMaxDisconnectionTime (TimeSpan)
• TsMaxConnectionTime (TimeSpan)
• TsMaxIdleTime (TimeSpan)
• TsAllowLogon (bool)
• TsRemoteControl (int)
• TsReconnectionAction (int)
• TsBrokenConnectionAction (int)
• TsConnectClientDrives (bool)
• TsConnectPrinterDrives (bool)
• TsDefaultToMainPrinter (bool)

5. New properties of User object

• HomeDirectory (string)
• HomeDrive (string)
• ProfilePath (string)
• LogonScript (string)
• AccountExpires (DateTime, nullable)
• PasswordLastSet (DateTime, nullable, readonly)
• PasswordAge (TimeSpan, nullable, readonly)
• PasswordExpires (DateTime, nullable, readonly)
• LastLogonTimestamp (DateTime, nullable, readonly)
• LastLogon (DateTime, nullable, readonly)
• LastLogoff (DateTime, nullable, readonly)
• AccountIsDisabled (bool)
• AccountIsLockedOut (bool)
• PasswordNeverExpires (bool)
• UserMustChangePassword (bool)

6. Set-QADGroup now has GroupType and GroupScope parameters (to change group type and scope )
7. New cmdlet Get-QADRootDSE
8. Disambiguation prefixes in Identity parameter: e.g. Get-QADUser ‘dn=cn=object_with@sign’
9. Access to default domain password policies through the domain object:e.g. Get-QADObject mydomain.local/ | format-list *
10. Functionality specific to Quest ActiveRoles Server (this will only work if you have the commercial app):

• Access template link management,
• Dynamic groups.

Lots of cool and exciting features and numerous bugfixes.

You can download the beta on the Quest’s AD cmdlets page. Please provide your feedback in the AD PowerShell discussion forums.

Tags: AD, AD cmdlets, Active Directory, ActiveRoles Server, Freeware, Password management, PowerShell, Release, Security, cmdlets
Add to: | Technorati | Digg | del.icio.us | Yahoo | BlinkList | Spurl | reddit | Furl |

---

Possibly related posts: (automatically generated)

• The .NET Convert Class
• Date Difference in Asp.net
• The .NET Framework type to ADO.NET data type mappings