Delete events in resource calendars

Recently, as part of a tenant-to-tenant migration, I ran into a problem where a customer had included all of their resource calendars (conference rooms, reservable equipment) in calendar migrations.

Unfortunately, once you’re no longer in the source tenant, you don’t have a way to cancel the meetings.… [ Continue reading ]

PowerShell Mouse Jiggler

If you have a need to deploy a mouse jiggler (to keep your PC from falling asleep) but don’t have rights to install things on your PC, this is the solution for you!

This script can be run interactively (dot source the function and then run it) or by adding it to your PowerShell profile.… [ Continue reading ]

Troubleshooting AADSTS50105: Your administrator has configured the application Microsoft Graph Command Line Tools (’14d82eec-204b-4c2f-b7e8-296a70dab67e’) to block users unless they are specifically granted (‘assigned’) access to the application.

While working on a recent tenant-to-tenant migration, I wanted to start updating my tooling to work with the new MgGraph cmdlets. Am I the only one that thinks “MgGraph” sounds like a value meal?

Anyway.

During the connection process, I ran into this error:

AADSTS50105: Your administrator has configured the application Microsoft Graph Command Line Tools (’14d82eec-204b-4c2f-b7e8-296a70dab67e’) to block users unless they are specifically granted (‘assigned’) access to the application. 

[ Continue reading ]

Working around accounts that expire with AAD Connect: REDUX

When attempting to migrate a Microsoft 365 organization from federated authentication to Password Hash Sync, there are a couple of gotchas that can impact how you manage certain accounts.  These changes in authentication behavior determine whether you need to implement new workflows or business processes–changes surrounding expired accounts and accounts flagged to force password change on next logon.… [ Continue reading ]

Find a value in any property in AD

A few days ago, I was trying to find all instances of a value stored in AD.  I was trying to understand all of the places that a particular partial GUID value was being used. so I had to come up with a way to search all properties for all objects across the directory space.… [ Continue reading ]

Locating accounts in Active Directory that are expired but still active

While working with a customer over the past few weeks implementing a new AAD Connect synchronization rule to disable expired accounts, we wanted to evaluate how many accounts might be selected by such a rule.

Checking hundreds, thousands, or even tens of thousands of accounts by hand doesn’t rank high on anyone’s list–fortunately, that’s what PowerShell was made for.… [ Continue reading ]

Working around accounts that expire with AAD Connect

When attempting to migrate a Microsoft 365 organization from federated authentication to Password Hash Sync, there are a couple of gotchas that can impact how you manage certain accounts.  These changes in authentication behavior determine whether you need to implement new workflows or business processes–changes surrounding expired accounts and accounts flagged to force password change on next logon.… [ Continue reading ]

Converting a Classic SharePoint site to a modern Communications site

Earlier today, I was working with a customer to begin enabling Viva Connections.

One of our prerequisites is ensuring the root site is the home site and that it is configured as a modern Communications site.  For customers that provisioned their SharePoint environments several years ago but never really invested time in it, it the default SharePoint site may still be a legacy classic team site.… [ Continue reading ]