Here’s a list of common Powershell Commands you might use or see on the 70-742 exam:
Install ADDS
Install-WindowsFeature AD-Domain-Services ntdsutil: Activate instance ntds, ifm, create sysvol full c:\ifm Install-ADDSDomainController -InstallationMediaPath c:\ifm Cloning: Get-ADDCCloneingExcludedApplicationList -GenerateXML New-ADDCCloneConfigFile Seizing Roles: 0 - PDC, 1 - RID, 2 - Infrastructure, 3 - Schema, 4 - Domain naming master Move-ADDirectoryServerOperationMasterRole -Identity "Server" -OperationMasterRole PDCEmulator 0,1,2 -Force Troubleshooting: nslookup, set type=all, _ldap._tcp.dc_msdcs.domain.com Move-ADObject -Identity 'cn=admin,ou=users,dc=domain,dc=com' -TargetPath 'ou=marketing,dc=domain,dc=com' New-ADuser, Set-ADUser, Remove-ADUser, Set-ADAaccountPassword, Set-ADAccountExpiration, Unlock-ADAcount, Enable-ADAccount, Disable-ADDaccount New-ADComputer, Get-ADComputer, Set-ADComputer, Remove-ADComputer, Test-ComputerSecureChannel, Reset-ComputerMachinePassword djoin /Provision /Domain / Machine /SaveFile djoin /requestOOJ /loadfile c:\client.txt /windowspath c:\Windows /Localos New-ADGroup, Set-ADGroup, Get-ADGroup, Remove-ADGroup, Add-ADGroupMember, Remove-ADGroupMember, Add-ADGroupMember, Get-ADGroupMember, Remove-ADGroupMember, Add-ADPrincipalGroupMemberShip, Get-ADPrincipalGroupMembership, Remove-ADPrincipalGroupMembership Organizational Units New-ADOrganizationUnit, Set-ADOrganizationalUnit, Get-ADOrganizationalUnit, Remove-ADOrganizationalUnit
Manage ADDS
Create and configure Service Accounts - The New Way New-ADServiceAccount -Name IIS-QMSA -DNSHostname server.domain.com -PrincipalAllowedToRetrieveManagedPassword Server1$ Add-ADComputerServiceAccount -identity server-dc1 -ServiceAccount IIS-QMSA Install-ADServiceAccount -Identity IIS-QMSA SPNs setspn -A WebService/server.domain.com:443 iis-qmsa Kerberos Constrained Delegation Set-ADComputer server -PrincipalsAllowedToDelegateToAccount $computer Password Policies New-ADFineGrainedPasswordPolicy Admins Add-ADFineGrainedPasswordPolicySubject Admins -Subjects "Secure Admins" ADDS Compacting DB ntdsutil: activate instance NTDS, Files, Compact to C:\, Integrity, Quit, Quit, Copy c:\ntds.dit C:\Windows\NTDS\ntds.dit, Del c:\Windows\NTDS\*.log, Exit Viewing Snap shot of ADSI Activate instance NTDS, snapshot, create, list all, quit Activate instance NTDS, snapshot, List all, mount <guid>, quit, quit dsamain -dbpath c:\$snap_path -ldapport 50000 Viewing Mount: Server Manager, domain controller, server:50000 Troubleshooting: DCDiag, RepAdmin, Get-ADReplicationConnection, Get-ADReplicationFailure, Get-ADReplicationPartnerMetaData, Get-ADReplicationSite, Get-ADReplicationSiteLink, Get-ADREplicationSiteLinkBridge, Get-ADReplicationSubnet New-ADReplicationSite -Name "Seattle" Recycle Bin Enable-ADOptionalFeature -Identity 'Recycle Bin Feature' -Scope ForestOrConfigurationSet -Target 'domain.com' -Server server
Group Policy
New-GPLink -Name "Managers" -target "ou=IT, dc=domanin,dc=com" New-Gpo -Name "Managers" | New-GPLink -target "ou=IT, dc=domain,dc=com" -LinkEnabled Yes Backup and Restore GPO Backup-Gpo -All -Path C:\GPOBackup Backup-Gpo -Name "Managers" - Path C:\GPOBackup -Comment "Weekly Backup" Restore-Gpo -Name "Managers" -Path C:\GPOBackup Import-Gpo -BackupGpoName "Managers" -TargetName "IT Managers" -Path C:\GPOBackup Copy-Gpo -SourceName "IT Managers" -TargetName "Managers" Invoke-GPUpdate
Certificates
Install-AdcsCertificationAuthority, Install-AdcsEnrollmentWebService, Install-AdcsEnrollmentPolicyWebService, Install-AdcsWebEnrollment, Install-AdcsNetworkDeviceEnrollmentService,InstallAdcsOnlineResponder Install-AdcsCertificationAuthority -CAType EnterpriseRootCA -IncludeManagementTools Certutil -Backup C:\Backup Certutil -Restore C:\Backup
ADFS
Installing and configuring AD FS Implementing Web Proxy Server Installing and Configure RDMS Install-WindowsFeature ADFS-Federation -IncludeManagementTools Install-ADFSFarm -CertificateThumbprint "keycodestring" -FederationServiceName Four.domain.com -GroupServiceAccountIdentifier domain.com\administrator Implement Web Application Proxy as AD FS Proxy Web And MSOFBA Used by Microsoft Office app HTTP Basic Used by Exchange ActiveSync clients OAuth2 Supported by Windows Store app Install and Configure AD RMS Install-WindowsFeature ADRMS -IncludeManagementTools Server, Client, Apps, DB, PKI