If you, for some reason, want to add a few settings to all / some group of vm’s in your environment, you can use the below script. It checks if values are already there and changes only when necessary.
To change settings, edit PSCustomObject Names/values, to change vm’s to apply changes to, edit “$vms = Get-VM vmname.contoso.com” filter.
Recently i had a task to delete obsolete antispam email notification in our environment.
I made a bit of researching on the matter, and, alas, the tool MS suggested to use, ComplianceSearchAction -Purge, only supported deleting 10 messages per mailbox, though i had quite a lot of daily spam notification incoming on some of our accounts.
So, i decided i’ll use ComplianceSearch to purge mailboxes where 10 or less messages matched the criteria, and for others i use Search-Mailbox -DeleteContent commandlet.
So, below script will allow to do that on a regular basis.
Recently i had a problem with ssl certificates monitoring in the environment.
Quick googling didn’t help, i was unable to find the template to discover all ssl-enabled ports in the environment, and monitor certificate on them.
So i have taken a few related templates and modified them.
The below template will use nmap ssl-cert script (ssl-discovery.sh) to discover open ports with ssl certificates, and openssl to get certificate data (ssl-cert-info.sh) on discovered ports.
Quite annoying task, especially taking into account that each of the members wants a copy of information from shared mailbox.
So, the following script will do the following
– Save Shared Mailbox into a variable 🙂
– Hide Shared Mailbox form GAL
– Remove all Shared Mailbox addresses and change it to GUID
– Change Shared Mailbox Name to GUID
– Create new DG with all the addresses of the orignal
– Add all who had access to Shared Mailbox as members of the DG
– Add all who had access to Shared Mailbox permission to Send As DG
– Copy All Content of Shared Mailbox to folder in the each of the personal mailboxes of the users who had access to the Shared Mailbox
Modified this old script a bit, to get prettier reporting with send-to-email, as well as classification filter and auto-accept license agreement for approvals.
This simple one-liner will give you main hardware and infrastructure information about vCenter vms.
Fields included:
Name – VM Name
PowerState – Powered On / Off
OS – OS Set on the VM profile
HWVersion – VM Hardware version
IPAddresses – all ip addresses (reported by VM Tools)
AdapterTypes – all network adapter types
DnsName – DNS Name from OS (reported by VM Tools)
ToolsVersion – VM Tools
ToolsStatus – VM Tools status
get-vm | select name, Powerstate,@{N="OS"; E={$_.Guest.OSFullName}},@{N="HWVersion"; E={$_.Version}},@{N="IPAddresses"; E={$_.Guest.IPAddress}},@{N="AdapterTypes"; Expression={(Get-NetworkAdapter $_).type}},@{N="DnsName"; E={$_.ExtensionData.Guest.Hostname}},@{N="ToolsVersion"; E={$_.Guest.ToolsVersion}},@{N="ToolsStatus"; E={$_.ExtensionData.Guest.ToolsVersionStatus}} | FT name, Powerstate, OS, HWVersion, IPAddresses, AdapterTypes, DnsName, ToolsVersion, ToolsStatus
get-vm | select name, Powerstate,@{N="OS"; E={$_.Guest.OSFullName}},@{N="HWVersion"; E={$_.Version}},@{N="IPAddresses"; E={$_.Guest.IPAddress}},@{N="AdapterTypes"; Expression={(Get-NetworkAdapter $_).type}},@{N="DnsName"; E={$_.ExtensionData.Guest.Hostname}},@{N="ToolsVersion"; E={$_.Guest.ToolsVersion}},@{N="ToolsStatus"; E={$_.ExtensionData.Guest.ToolsVersionStatus}} | Export-Csv -Path E:\tmp\vcenter.hosts.csv -NoTypeInformation -UseCulture
Just a quick and useful script to get report on a specific account activity for a time period, per day.
Continue reading
Recently, i was evaluating open source ActiveSync solutions, and came up with this installation and configuration guide.
Zimbra + Z-Push Part 1 : installation
Zimbra + Z-Push Part 2: configuration
I was unable to find any solutions for Z-Push and Zimbra to restrict users form accessing the mailboxes.
Once the server is exposed to the internet, every user on the Zimbra server is exposed to brute force attacks.
This is happening because Z-Push backend uses Zimbra soap connection, which is accessible to every Zimbra server account, and can’t be disabled per account.
To circumvent this scenario, I used main function GetUserDevicePermission () from this old post, modified it to handle subnet restriction, and instead of adding check to every request type, added check to the ZimbraBackend Logon() function.
I will describe changes I made in this article.
Recently, i was evaluating open source ActiveSync solutions, and came up with this installation and configuration guide.
Zimbra + Z-Push Part 1 : installation
Zimbra + Z-Push Part 3 : user restriction
http(s)://%mailserver%/Microsoft-Server-ActiveSync
Zimbra out of the box has the ability to forward requests to this URL to Exchange / ActiveSync Server, so we just need to configure the upstream proxy to forward requests to z-push server.
Recently, i was evaluating open source ActiveSync solutions, and came up with this installation and configuration guide.
Zimbra + Z-Push Part 2 : configuration
Zimbra + Z-Push Part 3 : user restriction
Ubuntu Server 16.04
Z-Push 2.3.8
Zimbra Backend 6.7
CentOS 6
Zimbra Collaboration Open Source 8.7.11_GA_1854
