O365 Security & Compliance Center PowerShell (MFA)

As many admins get used to using the Security and Compliance in O365 they will find that certain tasks, like purging mail, require the use of PowerShell(POSH). Unfortunately this can be difficult if you have MultiFactor Authentication enabled(MFA), 98% of the articles I have found contain the old connection method which does not work for MFA.

The good news is that MS has released a new version of the Exchange Online Module, which contains native commands to both connect and use the Security & Compliance Center functions and supports MFA.

1. Download the new Module.

  • Log-in to O365 Admin Center
  • Select the link in the bottom left, under Admin centers, labeled Exchange
  • Click the Hybrid Link on the left panel
  • Click the Configure Button under the Exchange Online PowerShell Module, this should install the new module.
  • If You can not get the Download Module to work, check out this article Support.Microsoft.Com

2. Run the Module

  • The new Module should install to your Start Menu, simple search and run “Microsoft Exchange Online Powershell Module.

3. Connect to the Security & Compliance center

  • Run the following command:
    Connect-IPPSSession -UserPrincipalName "yourlogon"
  • At this point your MFA Pop-Up should occur and you will be prompted to continue entering credentials.

4. If you wish to now Purge any email you must first build the rules and run the search. See this article on Support.Microsoft.Com

5. And the Final Step, run the purge from the POSH Session.

  • Run the following command:
    New-ComplianceSearchAction -SearchName "The Name that you gave your Search" -Purge -PurgeType SoftDelete

Azure AD License Office 365 with Azure Groups

You will need to create an Azure AD Group or Security group in order for this to work.

Open Azure AD,

Under Manage > Click Groups

Search for your group

Click on the group.

Then click Licenses

Then click Assign

Choose the license. If you want to turn off specific features you will do this in the assignment options after choosing your License Sku.

In the assignment options this is where you can turn off specific features you don’t want users licensed for.

Then Click Ok

Then Select Assign

Now you should see the product state as active under Licenses

Now go to Members and add your users. then go back to Licenses then Reprocess or wait 24-hours and the users should be licensed!

Powershell script to add computers to a Direct Access Computer group from an OU

Below you will find a powershell script that will add devices/users to a specific Group if they are in an OU.

get-adcomputer -SearchBase “OU=Windows 10,OU=Workstations,DC=boxne,DC=com” -Filter * | ForEach-Object {Add-ADGroupMember -Identity “Your Group Name” -Members $_.DistinguishedName}

If it’s BOLDED This is where your organization information will go!

Tired of Logging into a Website or Boxne.com? Powershell script to automatically log you into a website.

This powershell script will automatically log you into any website. You will just need to change a few values. This works great with Boxne.com and all you will need to do is update the

$username=”Your Email”


$password=”Your Password”

Then save this as a *.ps1 script and put it in your Startup/Taskscheduler or where ever you’d like to log you in!

$ie = New-Object -ComObject ‘internetExplorer.Application’
$ie.Visible= $true # Make it visible




While ($ie.Busy -eq $true) {Start-Sleep -Seconds 3;}

$usernamefield = $ie.document.getElementByID(‘inputEmail’)
$usernamefield.value = “$username”

$passwordfield = $ie.document.getElementByID(‘inputPassword’)
$passwordfield.value = “$password”

$Link = $ie.document.getElementByID(‘login’)


If you ever need any Automation tasks completed or Powershell scripts. Please contact [email protected], we are more then happy to consult, create these automation tasks for you.

Thank you.

Microsoft Edge Beta Downloads Leaked

Edge Beta

Right after the download links for Microsoft Edge for Mac were leaked, we now have the download links for the Microsoft Edge Beta leaked as well.

Just like the Microsoft Edge Canary and Developer builds, when launched the Beta build will display a “Welcome to Microsoft Edge Beta” as well as a New Tab Page (NTP) that prompts you to import data from other browsers and configure how you wish the NTP to appear.

Microsoft Edge Welcome Page
Microsoft Edge Welcome Page

The About page shows that the Microsoft Edge Beta build is currently using Chromium  00:03 / 00:30SKIP AD

Microsoft Edge About Page
Microsoft Edge About Page

The download links for the Beta build was found by ADeltaX and posted on Twitter.

In tests by BleepingComputer, the Edge Beta build runs well, performs well, and feels just like you would want it. For those who are interested in trying the Microsoft Edge Beta build, you can download it herefrom Microsoft.

This link must have just become active over the past few days, as BleepingComputer has been monitoring the same URL for quite some time now and the Beta build had previously not been available.

The URLs for the Beta, Developer, and Canary builds are shown below, so you can see how they differentiate.




Microsoft specific flags in Edge Beta

Microsoft Edge contains numerous Microsoft-specific features that can be enabled and disabled using the edge://flags page.

Below are the list of Microsoft specific flags that are found in the Microsoft Edge Beta.


All of the above features are also included in both the Developer and Canary builds of Edge.

Microsoft Azure Service outages

Microsoft and AWS are becoming increasingly common with service outages. This is frustrating especially when you are spending millions with them as a premier customer.

Their service outages not only create panic for an organization but can leave you with major profit loss, updates not provided into the issues, etc. Why pay thousands? Hundreds of Thousands of Dollars? When you can pay less from a small web hosting business and the outages are minimal?

One can argue that you pay for the Support and Services? We’ll sure…But if you were paying for the services why is it down?

While the support may be better then some web hosting companies. Companies like Boxne, LLC provide top-notch support to their customers as well as status updates when outages occur. Their model is to update every impacted customer every 30 minutes during an outage to give you full visibility. While Amazon Web Services have been down as well as Azure services. Boxne, LLC remains online and functional.

Why settle for a big business with outages, not get support you need and limited details? When you can purchase a Virtual Machine, Dedicated Server or Web Hosting services from https://boxne.com for a fraction of the price.

Boxne also have different tiers of support.

Enterprise – You have your own Account Manager!

Medium – You have a Technical Account Manager

Small – You have access to Technical Support Team.

They operate similar to Microsoft practice but rarely go down. This is because they utilize the two server model and don’t have complex connections in between datacenters.

Fixing the randomly stopping WsusPool IIS Application pool and Windows Updates failed 0x80244022 error

I was recently assisting a client with an upgrade of their Configuration Manager (SCCM) environment up to the latest release of 1702 and as part of that we’re also going over it’s currently deployed functionality and making sure it all works. They recently noted that clients were no longer receiving updates and ran the Software Update functionality of ConfigMgr, which funnily enough also relies on WSUS to sync up to Microsoft (but not push out the updates themselves).

So when troubleshooting Updating issues, you need to check both the Software Update Point and WSUS, and lowe and behold the WSUS console kept on crashing. After checking the Update Services service, I then turned to IIS and noticed the UpdatedServices Application pool had stopped, so I started it and went back into the console but soon noticed it had died again. After reading some advice on the TechNet forums they suggested raising the memory limit of the Wsus Application Pool, which is done by selecting the Application Pool Name and then clicking Advanced on the right hand side or right click menu. Scroll down to the bottom of the Advanced Settings Window until you see Private Memory Limit (KB) and increase this from the default of 1843200 (which is 1.8 GB) to 4194304 (which is 4 GB). Make sure you have enough RAM allocated to the machine, if you are feeling courageous you can also set the value to 0 which does not set a limit.

After increasing the available memory to the AppPool, WSUS synchronized successfully and clients were now receiving updates

Reset the Default Domain and Domain Controller Group Policy Objects to their out of box state

So, I recently inherited a small client with SBS 2011 and their previous IT admin only ever used the Default Domain Policy to apply computer and users settings (such as mapped drives and printers). Microsoft has quite a strong recommendation of best practice for the two policies which goes along the lines of;

  • Default Domain Policy GPO should only be used to manage the default Account Policies settings, Password Policy, Account Lockout Policy, and Kerberos Policy.
  • Default Domain Controllers Policy GPO should only be used to set user rights and audit policies.

So I first needed to create separate GPOs to store these custom settings and then a way to clear out all of those changes and revert them back to their default state.  So how do you go about reversing the damage if you don’t have backups far enough? In comes a small utility called dcgpofix which resets these two Group Policy Objects to their default settings. Launch an admin command prompt window and run the following command;

dcgpofix /target:both

Once executed it will confirm you want to restore them to their out of box defaults, which we can confirm with a couple of Y responses and then bang they should be restored, see the screen shot for an example of it running in my test lab.

Top 5 things you should know as a Systems Administrator

I used to work in the Technology Industry as a Systems Administrator and here’s the top 10 things you should know as a Systems Administrator. When i first started in Information & Technology, I thought i knew everything. Literally…Wow was i wrong, when i started my first job I came in the first day thinking IT will be a piece of cake. Yeah right, I was wrong. IT is a difficult industry to be in as Technology constantly advances and you have to advance with it. I enjoy working in System Administration and i continue to freelance this type of work today.

Today, I will be going over the top 5 things you should know as a systems administrator.

1. Remote Desktop Connection Manager or RDP Session Tools

Remote Desktop Connection Manager or other RDP Tools are a necessity when working as a Systems Administrator. This will allow you to connect to multiple machines at once, rather then using Remote Desktop Connection where you can open as many computers as you wish although it’s very time consuming. The Remote Desktop Connection Manager allows you to Save your sessions for later (The next day), which is a great tool for a Sys Admin.

2. Disabling Internet Explorer Enhanced Security

If Internet Explorer Enhanced Security Configuration is enabled a Systems Administrator will hate their life. When you go to a web page it will continue to prompt you to add the site to a list of “Safe Links”. When trying to resolve issues fast as a Systems Administrator, this is the most troublesome feature.

3. Virtual Machines / Cloud Infrastructure is the way to go

Virtual Machine Infrastructure is the way to go! The reason behind this is because you can utilize more resources/features such as High Availability in VMWare or any cloud infrastructure which allows you to migrate your virtual machines in the event of a Host failure. If you run Dedicated Servers only, in the event a system board fails there is no live migration and you have a hard downtime.

Vs. If you are in a virtual environment there is virtually no downtime!

4. Powershell is your friend

Now a days learning powershell is crucial to working as a Systems Administrator as you can automate tasks very quickly!

5. Active Directory Management

Almost every IT position has some experience with Active Directory although as a Systems Administrator, you should know the ins and outs of how Active Directory Functions from how DFS can be used to Domain Controllers, Caching of ADMX Templates and Group Policy integration. If you own a business above 5+ employees, I’d recommend Active Directory.