HUGE THANKS to Snyk for sponsoring this video & supporting the channel! Check out Snyk to help bake security into your development process, find and fix vulnerabilities before the bad actors do! snyk.co/johnhammond

I find this format with all the headaches, debugging, and finally solving problems way more instructive and ultimately satisfying than a lot of well scripted tutorials out there. Thank you John and keep up the good work!

I don't watch terrible videos. I watch educational videos and you my friend are a pleasure. Keep on showing real life programing, don't just teach the thing; demonstrate the thing.

Get-Random has a -count option, which should do what you were doing for most of the video

Thank you John! Starting my homelab this week!

Love your work! Thank you for bringing such great content for us learners! :)

Thank you for these videos, John, I am learning so much and enjoying myself.

Loving this series. Nice to see I'm not the only one constantly frustrated with Powershell :D

This was great - the roadblocks only help to solidify what must be learned. I'm gonna have to start taking notes.

Troubleshooting and learning is never Garbage! As you said, you are learning with us, and this is amazing. I hope you are thinking to do similar videos with SCCM , this will be explosive! Thank you so much to bring us on this journey with you!

Keep em coming please!!!

Powershell's essential is piping objects (and commands) into another. So "$users | Get-Random" will deliver the same output, and is (im my opinion) easier to read. Also Arrays, Hashtables etc, have a .Count Property which shows you the amount of elements containing.

Please keep up with the great content!

To fix the domain trust, try using the Network ID button in System Properties, saves you the extra restart!

I could watch these all day and then use what you learn for me lol 😂 thanks John

Great stuff yet again. Just a FYI, Get-Help [-examples] is your friend. Powershell has some very good help files. Make sure to run update-help as an admin on your new vm's first though.

Snapshots and Domain Controllers do not play well together...

Love you John

Hi, I'm enjoing your struggle with AD and powershell. As a AD administrator and self claimed powershell expert (imposter syndrome kicking in) I see the 2 obvious problems you have here. 1. Could not find domain issue: You have joined the workstation after your snapshot. Joining a computer to AD creates a AD Computer object in AD that is not present in your snapshot. When you're workstation try to connect to the AD (kerberos tickets and so on) it doesn't find the computer object and does not trust this computer. Solution: Rejoin the domain with your workstation and snapshot both at that time. Then this will be solved for an amount of time (There are password assigned to the computer that are auto updated, but this will not give problems for months). This is no timeskew issue, but a ad rollback issue 2. A hashtable or array are there own objects in powershell with there own attributes and are not object as is in javascript. To convert a hashtable to a (PSClient)Object you need to cast the hashtable with "$o = [PSCustomObject]@{...}". Then $o | ConvertTo-Json will work as expected. Hope this helps folks

John I don't think your DC snapshot has the computer account for the workstation, which would be why you keep having to rejoin the domain. Restore snap, rejoin the workstation then take a new DC snap.

"Hey John" at 44:42 was spooky. :)

The struggles build our strength.

Hello John. To get more than more groups per user you can do the following Get-Random -InputObject $groups -Count 5 So line will return any 5 random groups out of 10

Okay... It's almost 3 am and I can't think straight, but here's what I learned through sheer stubbornness and way too many hours of experimentation: 1. ConvertTo-Json has a depth parameter that flattens (if you're lucky) any arrays/lists/collections below that depth, it is set to 2 by default 2. ConvertTo-Json really just hates System.Collections.ArrayLists The problem John was having was the depth thing; I say that's lucky because otherwise instead of flattening, it interprets the values as objects instead of strings: those objects have properties and those properties have hashtables full of properties. The more depth you add, the more convoluted it gets. I kept trying to drag the original $group_names ArrayList along to the end of the script and have that be the array that's converted to the JSON file because it was convenient to have the Add and Remove methods, but it ends up spewing an output that is so ugly it made firefox crash just trying to paste it in a youtube comment (no, seriously, there was way too much text and my browser crashed). My solution was kinda bruteforce and probably inelegant, but I converted the ArrayList into a stringly-typed array (strongly typed, string array) while passing it to ConvertToJson. ```PowerShell ConvertTo-Json -InputObject @{ "domain"=$Domain "groups"=([string[]]$groups) "users"=$users } -Depth 3 | Out-File $OutputJSONFile ``` (Not that I expect markdown to work, much less syntax highlighting, but it makes a nice visual break for the code.) I also did the same with my own version of adding groups to the user object that picks a random number of group objects from the arraylist, up to a predetermined maximum number, and assigns them all to a [string[]] typed variable: ```PowerShell [string[]]$usergroups = (Get-Random -InputObject $groups -Count (Get-Random -Minimum 1 -Maximum $MaxUserGroups)) ``` All that said, this series has inspired me to share my own process with "the class" in either my own video series, or a series of blog posts. Look out for it on the internet, coming to a website near you "soon"

Hey John, I really like the PowerShell stuff. The issue you were facing with the Domain trust relationship... Have you tried to run this command from the client VM: Test-ComputerSecureChannel -Repair You might need to run it with the -cred parameter because it needs to be able to execute some stuff on the DC as well.

57:08 Luke Smith? For a second I thought this might be a linux video ;)

I've been looking for a way to automate AD user creation for years for my labs.

hey John ... i might ne wrong here but i think that you made the snapshot before you joined the PC to the domain ... therefore when reverting ... there is no computer abject in AD database for the test PC ... therefore you get the error. :)

if i get it right a major problem cause for u was, that hashtable objects are much different from array objects in powershell

I just posted about the identity with my Sim

John, just a minor point, but in my experience you would not make the group names as plurals!

Is that a windows 11vm or did you upgrade to 11 and is windows 11 worth it? Also I love your videos and you’ve taught me a lot

+= 1 does work you just wrote =+1 in the wrong order

Phil Mackenzie is an executive. You're in so much trouble when he finds out about this.

How come u didn't immediately go to SecLists? You traitor! Poor Daniel. 😆

👍

LOL Do you play Golf King World Tour? I think you do, that or someone is using you image. Korean golfing game.

You should probably have real passwords with real complexity if this is going to simulate a real AD, not removing all possible standards.

I was with you until you said "gOd I HaTe pOwErShElL s0 much" @ 28:42

I saw manchester mfs have my bfs password.

great video and serie, but u r actually dump to bother deleting "bad words" from a password list file -.- :D

Sysdm.cpl will get you quick to the domain add area. Use the network account button to get the trust back. When you revert the snapshot it losses trust me thinks.

How come u didn't immediately go to SecLists? You traitor! Poor Daniel. 😆

How come u didn't immediately go to SecLists? You traitor! Poor Daniel. 😆

How come u didn't immediately go to SecLists? You traitor! Poor Daniel. 😆