How To Set Group Policy To log Off Remote Desktop Session

In order to make the servers log of idle RDP session automaticity using group policy we need edit the group policy that the servers are using.

Under the Local Computer Policy\Computer Configuration\Administrative Templates\Windows Components\Terminal Services\Sessions folder, the following settings can be made:

• Set time limit for disconnected sessions
• Set time limit for active sessions
• Set time limit for idle sessions
• Terminate session when time limits are reached

Once you edit the settings refresh the group policy, using the following command:
Gpupdate /force

Check and Auto Refresh Exchange Server Mail Queue Using Exchange Shell

Ever since I started using Exchange Shell I wanted to write a script that check the Exchange server mail queue using Exchange shell and auto refresh theresult

So today I manged to get it done.

All you need to do is run it from your PC.

Save the script as .ps1 and change the server name to your Exchange server.

You can change the sleep time if you like.
$i =1
while ($i -le 2)  {Get-Queue -Server SERVER_NAME | ft;
sleep 4 ;
write-output “————”
;clear-host
write-output “Microsoft Exchange Server Email queue”
write-output “————”
Write-Host `n

}

How To Assign Mailbox Permission In Exchange 2007 Using The Shell

In order to grant a user read access permission to other user mailbox we need to use the:

Add-mailboxpermission cmdlet in Exchange 2007 Shell

In this example I’ll give User A, a read access permission to User B mailbox.

[PS] C:\>Add-MailboxPermission -Identity “UserA” -AccessRights

readpermission –user “UserB”

We can also assign the following permission with the –AccessRight :

-AccessRights <MailboxRights[]>

* FullAccess

* SendAs

* ExternalAccount

* DeleteItem

* ReadPermission

* ChangePermission

* ChangeOwner

Microsoft PowerShell Command Guide – Part 1

As PowerShell become more and more important tool in our day to day administration I have put up most of the basic commands that are being used by administrators and engineers.

Part 1 will give cover the basic commands and what they are doing.

Part 1

Terms

Cmdlets – command built into PowerShell

Get command – this command show us information about an item

Set command – this is the modifying command

; – semicolon commands

>> – append to existing file

Alias – create shortcut to a command

Basic Commands

Cd – open dir

Dir – show working directory

Md – make \ create a directory

Pwd – show path

Rmdir – remove directory

Mkdir – create directory

Display command

Format-table

Format-list

Format-wide

Get – command

Get-process – show running process

Get-process processname – check specific process name

Get-process name* – will search for a process start with the name

Stop-process -id number – stop a process

Whatif – tell you what heppan before you run a cmdlet

Sample Stop-process -id number – whatif – stop a process

-confirm – ask for conformation before executing a command

Get-help – help command

Get-eventlog – show event log

Samples and Commands

Ipconfig \all > ipconfig.txt – Pipe result to text file

Notepad ipconfig.text – Launch file to screen

Piping a few commands

ipconfig /all > test.txt ; route print >> test.txt

Help Commands

Get-help get-help – help command

Get-help get* – will show all the get commands

Get-help set* – will show all the set commands

Get-help * – show all commands

Get-help get-psdrive –example – show you the syntax

Get-commands – display all the get commands

Alias

Get-alias – show all alias in use

Set-alias – create an alias

Get-alias |sort – sort all alias names

Set Alias

Set-alias gh get-help – set gh as an alias to get-help

How To Set Session Timeout On A Cisco Router

Setting the session timeout parameter in a cisco router or switch is an easy task that will make your day to day work easy.

How to set the session timeout:

log on to the router and type:

router#configure t

router(config)#line vty 0 4

router(config-line)#session-timeout 10       —- 10 is the amount of minutes we want to configure before timeout.

router(config-line)#exec-timeout 0                    — this is when we log in exec mode ( 0 is never)

router(config-line)#end                                      –  exit the config line mode

router#copy run start

router#copy run start

Create New User \ Mailbox Script Using Exchange 2007 Shell

With Exchange 2007 we have the option to manage our Exchange Server using the Exchage Managment shell which done using commands (cmdlts).

This script is for creating a single user mailbox and an AD user using the shell.

The script called newuser.ps1

Just copy and save the file as newuser.ps1 and don’t forget to change the server and OU details.

$UPN=Read-Host “upn”                 -System.String
$Alias=Read-Host “Alias”              -asPlainText
$Name=Read-Host “Enter Name”   -asPlainText
$Password=Read-Host “Enter Password” -AsSecureString

new-mailbox -userPrincipalName $upn -alias $alias -name $name  -database “exchange server name\Mailbox Database name”  -OrganizationalUnit ‘yourdomain/your_ou_name’ -Password $Password

————

The script will ask you to provide a password,Alias,name and UPN (the email address).

How To Print Screen In RDP Session

In order to print screen a window in an RDP session we need to use a different keys than the ones we use on our local desktop.

To print screen in RDP session please use:

CTRL+ALT+MINUS (–) symbol on the numeric keypad.

GPRESULT In Windows Server 2008

Microsoft have made a small change to the Windows Server 2003 GPRESULT command.

In windows 2003 we had to type GPRESULT only in the command line in order to view the Applied Group polices however in windows server 2008 we need to type the /R switch after the gpresult.

The windows Server 2008 the full GPRESULT command is:

gpresult /s

there are other switches to the command which are:

s <Computer> Specifies the name or IP address of a remote computer. Do not use backslashes. The default is the local computer.
/u [<Domain>\]<UserName> Runs the command with the credentials of the specified user. The default user is the user who is logged on to the computer that issues the command.
/p [<Password>] Specifies the password of the user account that is provided in the /u parameter. If /p is omitted, gpresult prompts for the password. /p cannot be used with /x or /h.
/user [<TargetDomain>\]<TargetUser> Specifies the remote user whose RSoP data is to be displayed.
/scope {user | computer} Displays RSoP data for either the user or the computer. If /scope is omitted, gpresult displays RSoP data for both the userand the computer.
[/x | /h] <FileName> Saves the report in either XML (/x) or HTML (/h) format at the location and with the file name specified by the FileName parameter. Cannot be used with /u, /p, /r, /v, or /z.
/f Forces gpresult to overwrite the file name specified in the /x or /h option.
/r Displays RSoP summary data.
/v Displays verbose policy information, including additional detailed settings that have been applied with a precedence of 1.
/z Displays all available information about Group Policy, including detailed settings that have been applied with a precedence of 1 and higher.
/? Displays help at the command prompt.

For more information see:

http://technet.microsoft.com/en-us/library/cc733160.aspx

Limit the Number Of allowed IPSEC VPN sessions on Cisco ASA 5540

To set a limit on the number of allowed IPSEC VPN session on an Cisco ASA 5540 we need to define how many sessions \ users are allowed to be connected to the ASA in each given time.

By default the number of allowed VPN session is unlimited.

To set a limit we need use the Cisco ASDM.

Once logged to the ASDM go to:

Configuration > remote access VPN > Network (client) access > advanced > IPsec > System options

Once there change the maximum IPsec sessions, to the applicable number.