PowerShell Cheat Sheet for Exam 70-411: Administering Windows Server 2012
I have finished 70-410 and now working on the 70-411. And this time I will be making an PowerShell Cheat sheet as well. I’m sure I’m missing some command especially the Hyper-v once
| Cmdlet | Description |
|---|---|
| Add-WsusComputer | Adds a specified client computer to a specified target group |
| Approve-WsusUpdate | Approves an update to be applied to clients |
| Get-WsusClassification | Gets the list of all WSUS classifications currently available in the system. |
| Get-WsusComputer | Gets the WSUS computer object that represents the client computer |
| Get-WsusProduct | Gets the list of all products currently available on WSUS by category |
| Get-WsusServer | Gets the value of the WSUS update server object |
| Get-WsusUpdate | Gets the WSUS update object with details about the update. |
| Invoke-WsusServerCleanup | Performs the process of cleanup on a specified WSUS server |
| Set-WsusClassification | Sets whether the classifications of updates that WSUS synchronizes are enabled or disabled. |
| Set-WsusProduct | Sets whether the product representing the category of updates to synchronize is enabled or disabled. |
| Set-WsusServerSynchronization | Sets whether the WSUS server synchronizes from Microsoft Update or an upstream server and the upstream server properties |
| Approve-WsusUpdate | Approves an update to be applied to clients. |
| Deny-WsusUpdate | Declines the update for deployment |
| Get-WsusClassification | Gets the list of all WSUS classifications currently available in the system. |
| Get-WsusComputer | Gets the WSUS computer object that represents the client computer. |
| Get-WsusProduct | Gets the list of all products currently available on WSUS by category. |
| Invoke-WsusServerCleanup | Performs the process of cleanup on a specified WSUS server. |
| Set-WsusClassification | Sets whether the classifications of updates that WSUS synchronizes are enabled or disabled |
| Set-WsusServerSynchronization | Sets whether the WSUS server synchronizes from Microsoft Update or from an upstream server and uses the upstream server properties |
| Get-DfsnRoot | Retrieves the configuration settings for the specified namespaces. |
| New-DfsnRoot | Creates a new DFS namespace with the specified configuration settings. |
| Set-DfsnRoot | Creates a new DFS namespace with the specified configuration settings |
| Get-DfsnRootTarget | Retrieves all the configured root targets for the specified namespace root, including the configuration settings of each root target |
| New-DfsnRootTarget | Adds a new root target with the specified configuration settings to an existing DFS namespace. |
| Set-DfsnRootTarget | Sets configuration settings to specified values for a namespace root target of an existing DFS namespace |
| Remove-DfsnRootTarget | Deletes an existing namespace root target of a DFS namespace |
| Get-DfsnServerConfiguration | Retrieves the configuration settings of the specified DFS namespace server |
| New-DfsnFolder | Creates a new folder in an existing DFS namespace with the specified configuration settings. |
| Get-DfsnFolder | Retrieves configuration settings for the specified existing DFS namespace folder. |
| Set-DfsnFolder | Modifies settings for the specified existing DFS namespace folder with folder targets |
| Move-DfsnFolder | Moves an existing DFS namespace folder to an alternate specified location in the same DFS namespace. |
| Grant-DfsnAccess | Grants access rights to the specified user/group account for the specified DFS namespace folder with folder targets |
| Get-DfsnAccess | Retrieves the currently configured access rights for the specified DFS namespace folder with folder targets |
| Revoke-DfsnAccess | Revokes the right to access a DFS namespace folder with folder targets or enumerate its contents from the specified user or group account |
| Remove-DfsnAccess | Removes the specified user/group account from access control list (ACL) of the DFS namespace folder with folder targets |
| Remove-DfsnFolder | Deletes an existing DFS namespace folder with a folder target |
| New-DfsnFolderTarget | Adds a new folder target with the specified configuration settings to an existing DFS namespace folder |
| Get-DfsnFolderTarget | Retrieves configuration settings of folder target(s) of an existing DFS namespace folder. |
| Set-DfsnFolderTarget | Modifies settings for the folder target of an existing DFS namespace folder |
| Remove-DfsnFolderTarget | Deletes a folder target of an existing DFS namespace folder |
| Add-RemoteAccessLoadBalancerNode | Adds a server to the load balancing cluster |
| Add-VpnIPAddressRange | Adds a new IPv4 address range from which IPv4 addresses can be assigned to VPN clients. |
| Add-VpnS2SInterface | Creates a site-to-site interface with the specified parameters |
| Clear-VpnS2SInterfaceStatistics | Clears statistics for a site-to-site interface |
| Connect-VpnS2SInterface | Connects a site-to-site interface that is currently not connected |
| Disconnect-VpnS2SInterface | Disconnects a site-to-site interface that is currently connected |
| Disconnect-VpnUser | Disconnects a VPN connection originated by a specific user or originating from a specific client computer |
| Get-RemoteAccess | Displays the configuration of DirectAccess and VPN (both Remote Access VPN and site-to-site VPN). |
| Get-RemoteAccessConnectionStatistics | Displays the statistics of real-time, currently active DirectAccess and VPN connections and the statistics of DirectAccess and VPN historical connections for a specified time duration |
| Get-RemoteAccessConnectionStatisticsSummary | Displays the summary statistics of real-time, currently active DirectAccess and VPN connections and the summary statistics of DirectAccess and VPN historical connections for a specified time duration |
| Get-RemoteAccessHealth | Obtains the current health of a Remote Access deployment |
| Get-RemoteAccessLoadBalancer | Displays load balanced cluster settings |
| Get-RemoteAccessUserActivity | Displays the resources accessed over the active DirectAccess and VPN connections and the resources accessed over historical DirectAccess and VPN connections |
| Get-VpnAuthProtocol | Retrieves authentication parameters configured on a VPN server |
| Get-VpnS2SInterface | Retrieves configuration details for a site-to-site interface |
| Get-VpnS2SInterfaceStatistics | Retrieves statistics of a site-to-site interface |
| Get-VpnServerIPsecConfiguration | Gets IPsec parameters configured on the VPN server |
| Install-RemoteAccess | Performs prerequisite checks for DirectAccess to ensure that it can be installed, installs DirectAcccess for remote access (includes management of remote clients) or for management of remote clients only, and installs VPN (both Remote Access VPN and site-to-site VPN). |
| Remove-RemoteAccessLoadBalancerNode | Removes a server from the network load balancing (NLB) cluster. |
| Remove-VpnIPAddressRange | Removes an existing IPv4 address range from the pool for IP address Assignment |
| Remove-VpnS2SInterface | Removes a specified site-to-site interface |
| Set-RemoteAccess | Modifies the configuration that is common to both DirectAccess and VPN, such as SSL certificate, Internal interface, and Internet interface |
| Set-RemoteAccessLoadBalancer | Configures load balancing on the Remote Access server or the cluster server. |
| Set-VpnAuthProtocol | Sets the authentication method for incoming site-to-site VPN interfaces on a Routing and Remote Access server |
| Set-VpnAuthType | Sets the authentication type to be used for connecting to a VPN |
| Set-VpnIPAddressAssignment | Configures the IPv4 address assignment method or the IPv6 prefix for IPv6 address assignment |
| Set-VpnS2SInterface | Modifies parameters for a site-to-site interface |
| Set-VpnServerIPsecConfiguration | Sets the IPsec parameters for a site-to-site server |
| Uninstall-RemoteAccess | Uninstall the Remote Access |
| Add-DAAppServer | Adds a new application server security group to the DirectAccess (DA) deployment, adds an application server to an application server security group that is already part of the DirectAccess deployment, and adds or updates application server Group Policy Object (GPO) in a domain |
| Add-DAClient | Adds one or more client computer security groups (SGs) to the DirectAccess (DA) deployment, adds one or more DA client Group Policy objects (GPOs) in one or more domains, adds one or more SGs of down-level clients to the DA deployment in a multi-site deployment, or adds one or more down-level DA client GPOs in one or more domains in a multi-site deployment. |
| Add-DAClientDnsConfiguration | Adds the specified DNS suffix, DNS server addresses, or proxy server set to the Name Resolution Policy Table |
| Add-DAEntryPoint | Adds an entry point to a multi-site deployment. |
| Add-DAMgmtServer | Adds the specified Management servers to the DirectAccess deployment |
| Disable-DAMultiSite | Disables a multi-site deployment that contains a single entry point |
| Disable-DAOtpAuthentication | Disables one-time password authentication for DirectAccess users. |
| Enable-DAMultiSite | Enables and configures a multi-site deployment, and adds the first entry point. |
| Enable-DAOtpAuthentication | Enables and configures one-time password authentication for DirectAccess users. |
| Get-DAAppServer | Displays the list of application server security groups that are part of the DirectAccess deployment and the properties of the connections made to the groups |
| Get-DAClient | Displays the list of client security groups that are part of the DirectAccess deployment and the client properties |
| Get-DAClientDnsConfiguration | Displays all the Name Resolution Policy Table entries and the local name resolution property. |
| Get-DAEntryPoint | Displays the settings for an entry point |
| Get-DAEntryPointDC | Retrieves a list of entry points and the associated domain controllers |
| Get-DAMgmtServer | Displays the configured Management servers. Management server here refers to update servers, Domain Controllers, and other servers |
| Get-DAMultiSite | Retrieves global settings applied to all entry points in a multi-site deployment. |
| Get-DANetworkLocationServer | Displays the detailed Network Location Server configuration. |
| Get-DAOtpAuthentication | Displays one-time password authentication settings for DirectAccess. |
| Get-DAServer | Displays the properties of the DirectAccess Server |
| Remove-DAAppServer | Removes the specified lit of application server security groups (SGs) from the DirectAccess (DA) deployment, removes the specified application servers from the specified DA application server SG, and removes the application server Group Policy objects in the specified domains. |
| Remove-DAClient | – Removes one or more client computer security groups (SGs) from the DirectAccess (DA) deployment, removes one or more DA client Group Policy objects (GPOs) from domains, removes one or more SGs of down-level clients (down-level clients can connect only to the specified site) from the DA deployment in a multi-site deployment, and removes one or more down-level DA client GPOs from domains in a multi-site deployment. |
| Remove-DAClientDnsConfiguration | Removes the Name Resolution Policy Table (NRPT) entry corresponding to the specified DNS suffix from the NRPT |
| Remove-DAEntryPoint | Removes an entry point from a multi-site deployment |
| Remove-DAMgmtServer | Removes the specified management servers from the DirectAccess deployment. |
| Set-DAClient | Configures the properties related to a DirectAccess client |
| Set-DAClientDnsConfiguration | Configures the DNS server and proxy server addresses of a Name Resolution Policy Table entry and configures the local name resolution property. |
| Set-DAEntryPoint | Configures settings for the entry point |
| Set-DAEntryPointDC | Modifies domain controller settings for the entry point. |
| Set-DAMultiSite | Configures global settings for all entry points in a multi-site deployment. |
| Set-DANetworkLocationServer | Configures the Network Location Server. |
| Set-DAOtpAuthentication | – Configures one-time password authentication settings for DirectAccess. |
| Set-DAServer | Sets the properties specific to the DirectAccess server |
| Update-DAMgmtServer | Updates the list of Management servers of the DirectAccess deployment. |
| Add-RemoteAccessRadius | Adds a new external RADIUS server for VPN authentication, accounting for DirectAccess and VPN, or one-time password authentication for DirectAccess. |
| Get-RemoteAccessAccounting | Displays the accounting configuration for Remote Access, such as the different types of accounting that are enabled and the respective configuration. |
| Get-RemoteAccessRadius | Displays the list of RADIUS servers, including RADIUS for VPN authentication, RADIUS for DirectAccess and VPN Accounting, and RADIUS for one-time password authentication for DirectAccess |
| Remove-RemoteAccessRadius | Removes an external RADIUS server from being used for VPN authentication, accounting for both DirectAccess and VPN, or one-time password authentication for DirectAccess. |
| Set-RemoteAccessAccounting | Sets the enabled state for inbox and RADIUS accounting for both external RADIUS and Windows accounting, and configures the settings when enabled. |
| Set-RemoteAccessRadius | Edits the properties associated with an external RADIUS server being used for VPN authentication, accounting for DirectAccess and VPN, and one-time password authentication for DirectAccess. |
| Add-KDSRootKey –EffectiveTime ((Get-Date).AddHours(-10)) | creates a key distribution services root key for the domain. |