Find mailbox move history

By |August 31st, 2016|

Had a customer who wanted to do a mailbox restore from 2 years ago but wasn’t sure which mailbox database the mailbox would have resided in back then. I found a really useful command to show the move history on the a mailbox:


(Get-MailboxStatistics <USER> -IncludeMoveHistory).MoveHistory | select CompletionTimestamp,SourceDatabase,TargetDatabase


Which gives you something like the below:


Hope […]

Post to Twitter

SCCM Update Pack Right Click Options Greyed Out

By |August 23rd, 2016|

Hello all!

We had a customer recently when upgrading from SCCM Update Pack 1602 to 1606 that faced an issue where the right click options to install are greyed out preventing installation.

We found the below resolved the issue for us:

Firstly, take a backup of your SCCM DB just to be safe! Secondly this should be a […]

Post to Twitter

Enable Single Sign On for ADFS for Microsoft Edge

By |April 18th, 2016|

Hello everyone!

By default, ADFS doesn’t currently support SSO for the Edge Web Browser due to the fact that Microsoft released the Edge browser after releasing ADFS 3.0.

We can add SSO support for Edge ourselves, by adding it to the list of WIASupportedUserAgents.

Log into your primary ADFS server and open PowerShell as administrator.
Run the following command to add Edge and […]

Post to Twitter

Powershell one-liner to find all users in an OU not logged in for a time span

By |March 30th, 2016|

Here’s a handy one liner to find all users in a particular OU not logged in for 90 days:


search-adaccount -accountinactive -usersonly -TimeSpan 90.00:00:00 -SearchBase “OU=Users,OU=Company,DC=Contoso,DC=com” | export-csv usersnotloggedinfor90days.csv


Hope it helps!

Post to Twitter

Grant Temporary Membership to AD Groups in Windows Server 2016

By |March 10th, 2016|

To provide a user or multiple users temporary access to a group within AD there are 2 options which can provide a solution.

The first way is to make dynamic object within AD which is an object that has a set time that it will be active for. This is done by using ldifde and a […]

Post to Twitter

Deploying Visio 2016 Volume Licence using App-V in SCCM 2012 R2

By |January 15th, 2016|

Have you found yourself in a situation where you have deployed Office click to run but do not have any licences for Visio or Project, but do have to hand the Volume Licence versions? Because Windows does not like having both the click to run version of office and the volume licence version installed at […]

Post to Twitter

Deploying Batch Scripts using Intune

By |November 2nd, 2015|

I’ve been doing some work for a client recently to update their 3rd party applications which they have deployed using Intune. I ran into a problem whereby when updating Java, the older versions are not uninstalled/overwritten by the update, so older versions of Java are left installed on clients. I was able to remove the older versions […]

Post to Twitter

Bitlocker recovery missing in Active Directory users and computers

By |October 27th, 2015|

Hi All,

A colleague recently asked me about a problem they were having, whereby the ‘Bitlocker Recovery’ tab in the properties of all Computer accounts was missing in Active Directory Users and Computers and therefore they could not obtain a Bitlocker recovery key when using a particular domain controller.

This tab actually requires an additional feature installation, as it does […]

Post to Twitter

Increase your rule limit size in Office 365

By |October 6th, 2015|

If you’re anything like me and have a lot of rules in your inbox, you may be very close or already hit your limit of allowed rules.

By default in 365 your rule limit size is 64k , you can increase this with the below command:

set-mailbox -identity -RulesQuota 256kb

The limit is 256kb so you […]

Post to Twitter

Lync 2013 Management Shell Error Enabling Users

By |September 29th, 2015|

We recently received a request from a customer with issues related to an ‘Insufficient access rights to perform the operation’ error occurring when using the cmdlet Enable-CsUser.

They were displayed with the following:

Thankfully, we have another simple and quick fix for this one.

Go to Active Directory Users and Computers (with Advanced Features turned on
in the […]

Post to Twitter