Group Policy Blog

Group Policy Tips, Tricks, and News from Darren Mar-Elia

Group Policy Security Compliance with PowerShell

Group Policy Compliance Manager PowerShell module

Last year we shipped the Group Policy Compliance Manager (GPCM) product–our enterprise compliance reporting solution for Group Policy. Today we are releasing a new PowerShell module to go along with GPCM. This module allows for some cool capabilities for searching, reporting on and analyzing the data that GPCM collects. GPCM gathers Group Policy processing health and settings data from your…

GP Automation – Folder Options/Open With

OK, so this is not a ‘new’ story but it is an interesting one. Since the first script kitties were writing viruses that did nefarious things we had ways to ensure we could limit their impact. Redirecting .vbs to notepad was super common. I saw a tweet today from one of the PS-OGs (PowerShell Original Gangsters) in response to a tweet about using GP Preferences to set the default behavior of .js…

DevOps and the Cross Platform Windows Group Policy SDK

Managing Linux/Unix Settings with Dell Authentication Services and Group Policy

Group Policy’s Cross Platform History
It was the early 2000s. I was at Quest Software–serving as CTO for the Windows management business. A lot of my job in those days involved looking at technologies to acquire. Even at that time, I had been a Group Policy geek for a few years, with some large enterprise deployments of AD and GP under my belt. I remember attending a meeting in a coffee sho…

Group Policy Automation and Dell Authentication Services

As you may have heard last week, or seen in our newsletter, or read graffiti’d all over the New York subway system, our Group Policy Automation Engine (GPAE) has added support to help organizations manage their Unix systems with Group Policy! OK, maybe that is a stretch, but it was in our newsletter!

We are so excited to enable the configuration of the Dell Authentication Services in t…

PowerShell and DevOps Summit Global Summit 2016 – my week at a glance

What a great week!

I have been wanting to attend this summit for years and it just never got on my short priority list. This year was different and to be honest, it took DSC and DevOps to get me there. I love PowerShell, have been a fan for a very long time. Since my first reading of the Monad Manifesto back in 2004 I have been using, learning and talking about PowerShell.

This summit is a…

Darren’s 9 Group Policy Principles

Darren Mar-Elia and I spent some time this week with a group of consultants and service providers. These folks come from a wide variety of backgrounds and experiences. Our goal was to talk about Group Policy, some best practices, and share some of our experiences of a combined almost 50 years of working with Group Policy and Configuration Management technologies. OK, a bit of an exaggeration…

Auditing Security Access Changes on Critical Windows Servers

Here’s the scenario:

You’ve got some Windows servers that contain critical customer data–it might be customer records,  or PCI (Payment Card Industry) data, or just a critical system on your network. You rightly use Group Policy Restricted Groups policy or similar, to control access to those servers. That Group Policy controls which users or groups are members of the local Administrators…

GPO Reporting Pak – Find-DupGPSettings

Following a bit of a theme here. I did some exploring on scenarios related to using the GPO Reporting Pak PowerShell cmdlets to automate some GP troubleshooting.

This video talks about searching through the output of your report inside the PowerShell pipeline. This allows you to let your imagination go and come up with some very interesting ways to solve GP related configuration issues…

Find all Registry Settings Managed in a GPO

Group Policy Objects (GPOs) can contain many different kinds of settings. Much of that data is simple registry data. Finding registry settings in GPOs and handling them is not the simplest of tasks and requires some PowerShell. Microsoft has provided some cmdlets for the management of Group Policy and at SDM Software we have provided quite a bit more to enable additional scenarios that cannot b…

Move-Printer – creating the advanced function

Why a PowerShell Advanced Function
This is a bit of a stream of conscious follow-up to a previous post related to managing Deployed Printers with the Group Policy Automation Engine. I decided today, while working with someone, that porting this to an Advanced Function was the right direction. I’m not done here, but wanted to quickly share the experience. Taking the time to think more broadly…

Copyright © 2015 SDM Software, Inc.
Site design by Social Media Ninjas