Day to Day Tasks #2

Posted on May 8, 2012 by

As I’ve mentioned before NextUC hosts Lync. Of course after the 60 day free trial we charge for the service. Sometimes we have a need to put a customer on probation by suspending Enterprise Voice (per to peer voice and IM still work)  or suspended (noting works anymore) a customer.

So I came up with a quick and easy low impact way to suspend a Lync user so that I can lock a user out of Enterprise Voice without changing any dial plans or DIDs on the user. $UPN is the userPrincipalName (i.e. mharrison@nextuc.com) of the user.

Set-CsUser -DomainController $fqdDomainController -Identity $UPN -AudioVideoDisabled $True -EnterpriseVoiceEnabled $False

Then to re-enable the user we just do the opposite

Set-CsUser -DomainController $fqdDomainController -Identity $UPN -AudioVideoDisabled $False -EnterpriseVoiceEnabled $True

If you need to suspend a whole company (i.e. OU) so that the users can’t login to Lync you can use this command where $distinguisedName is the full LDAP path to the OU:

Get-AdUser -Server $fqdDomainController -Filter * -SearchBase $distinguishedName -SearchScope OneLevel | Disable-ADAccount

To turn a company back on you use:

Get-AdUser -Server $fqdDomainController -Filter * -SearchBase $distinguishedName -SearchScope OneLevel | Enable-ADAccount

These two commands basically get all the users (-Filter *) in an OU and pipes it to Enable-ADAccount or Disable-ADAccount.

I hope these tips help and let me know if you have questions or any tips of your own to share.

Posted in Development, Hosting, NextUC, PowerShell | Tagged | Leave a comment

Problems with Get-ADUser?

Posted on April 11, 2012 by

Background:

I work for a company that hosts Lync. We have a web based portal that allows clients to setup their Lync accounts (creates OU and users, enables for conferencing and enterprise voice etc.). The portal calls a web service which then calls a PowerShell script that has functions for dealing with the AD and with Lync.

The Problem:

The portal sometimes kicks off simultaneous calls to the web service that end up running the same backend PowerShell scripts. I make extensive use of logging in the web service for debugging purposes. From the log fragment below you can see that two simultaneous calls were made on separate threads ( [5] & [6] ). The lines in bold are the command lines sent to the PowerShell script and are written out in the line of code that immediately precedes the line to execute the PowerShell script. If you follow the threads you can see that thread [6] returned nothing meaning that the user didn’t exist (problem occurs regardless of if the users exist or not). But thread [5] fails with the “invalid enumeration context” message. If you try to rerun the command line that failed it will work. The problem only occurs with simultaneous calls to the Get-CTUser function. Basically Get-CTUser is a wrapper for the AD PowerShell Get-ADUSer cmdlet.

2012-03-23 13:11:55,404 [5] DEBUG – Begin GetCTUser
2012-03-23 13:11:55,404 [6] DEBUG – Begin GetCTUser
2012-03-23 13:11:55,435 [5] INFO  – Getting user willy@uc.com
2012-03-23 13:11:55,435 [6] INFO  – Getting user admin@uc.com
2012-03-23 13:11:55,451 [5] DEBUG – Begin RunScript
2012-03-23 13:11:55,451 [6] DEBUG – Begin RunScript
2012-03-23 13:12:08,338 [5] DEBUG – Get-CTUser -container ‘geeks’ -UPN ‘willy@uc.com’
2012-03-23 13:12:08,354 [6] DEBUG – Get-CTUser -container ‘geeks’ -UPN ‘admins@uc.com’
2012-03-23 13:12:08,479 [6] DEBUG -
2012-03-23 13:12:08,479 [6] DEBUG – End RunScript
2012-03-23 13:12:08,479 [6] DEBUG – End GetCTUser
2012-03-23 13:12:08,588 [5] ERROR – GetCTUser The server has returned the following error: invalid enumeration context.

Some searching of the Internet for “invalid enumeration context” showed up several references to the problem. Most of the references I found were from people that were doing things like porting users so they were dealing with large results sets with hundreds or thousands of users and most of the solutions involved setting a page size but that didn’t always work. In my case I’m only after one user but still the problem seems the same. I can’t verify that it is a bug or not but either way I can’t have my PowerShell scripts sending errors back to the portal.

So after some research I decided to use DirectorySearcher to get the user and this approach seems to be working fine in my testing. The DirectorySearcher is really quite easy to use. Basically all you need to do is setup the LDAP path, tell it how deep to search, add which properties to return then tell it what to search for.

function Get-CTUser(
[Parameter(Mandatory = $true)][string]$container,
[Parameter(Mandatory = $true)][string]$upn
)
{
    try
    {
        $Domain = New-Object System.DirectoryServices.DirectoryEntry("LDAP://ou=" + $container + "," +  $defaultHostingPath)
        $Searcher = New-Object System.DirectoryServices.DirectorySearcher($Domain)
        $Searcher.PageSize = 200
        $Searcher.SearchScope = "subtree"

        # Setup the filter to only find the one user
        $Searcher.Filter = "(userPrincipalName=" + $upn + ")"
        # Setup which fields we want to return
        $Attributes = @("distinguishedName", "GivenName", "lastLogon", "mail", "Name", "SamAccountName", "sn", "telephoneNumber", "userAccountControl", "UserPrincipalName")
        # Load the fields inthe properties array
        ForEach($Attribute In $Attributes)
        {
            $Searcher.PropertiesToLoad.Add($Attribute) > $Null
        }
        # Execute the search
        $Results = $Searcher.FindAll()
        # Build the reyrn string
        ForEach ($Result in $Results)
        {
            $ret = $ret + "`nDistinguishedName`t:" + $Result.Properties.Item("distinguishedName")+ "`n"
            $ret = $ret + "GivenName`t`t:" + $Result.Properties.Item("GivenName")+ "`n"
            $ret = $ret + "lastLogon`t`t:" + $Result.Properties.Item("lastLogon")+ "`n"
            $ret = $ret + "mail`t`t`t:" + $Result.Properties.Item("mail")+ "`n"
            $ret = $ret + "Name`t`t`t:" + $Result.Properties.Item("Name")+ "`n"
            $ret = $ret + "SamAccountName`t`t:" + $Result.Properties.Item("SamAccountName")+ "`n"
            $ret = $ret + "Surname`t`t`t:" + $Result.Properties.Item("sn")+ "`n"
            $ret = $ret + "telephoneNumber`t`t:" + $Result.Properties.Item("telephoneNumber")+ "`n"
            $ret = $ret + "userAccountControl`t:" + $Result.Properties.Item("userAccountControl")+ "`n"
            $ret = $ret + "UserPrincipalName`t:" + $Result.Properties.Item("UserPrincipalName")+ "`n"
        }

        return $ret
    }
    catch
    {
        Throw (new-object Exception("Exception Get-CTUser: $_"))
    }

}

The lines of script were I’m building the $ret string is done that way so that I could mimic as close as possible the way that Get-ADUser returns its results. I didn’t want to break anything upstream that parsed the result values.

Posted in Lync, PowerShell | Tagged | Leave a comment

Two New Microsoft Lync Server 2010 Jump Starts

Posted on April 10, 2012 by

Yep, there are two new Jump Starts for April.

1. Deploying, Configuring and Administering Microsoft Lync Server 2010 Jump Start

2. Planning and Designing a Microsoft Lync Server 2010  Solution

Enjoy.

Posted in Announcements, Lync, Training | Tagged | Leave a comment

Speaking at Orlando Code Camp on March 31st

Posted on March 26, 2012 by

Come out ant hear the “GotSpeech Guy” talk about developing speech applications using Windows Workflow.

It’s March again and that means that it is time for the Orlando Code Camp. Every year about this time the Orlando .Net User Group hosts a code camp. Don’t know what a code camp is? Well, it’s a free one day learning event for programing professionals. The code camp focuses on .Net technologies and all of the sessions are presented by members of the development community. Real every day working developers sharing their expertise.

I’ll be there giving a presentation entitled Administering Lync Using PowerShell. So if you are in the Florida area then register at the link above and come on by.

Posted in Code Camp, Lync, Me, OneTug, PowerShell | Tagged | Leave a comment

Off to the Microsoft 2012 Global MVP Summit

Posted on February 25, 2012 by

I leave early tomorrow (2/26) for a week in Bellevue WA. I’ll be attending the Microsoft 2012 MVP Global Summit. A week with my fellow MPVs and the Lync product group. This will be my 6th Summit and it is something that I look forward too each year. Lots of learning and chances to interact with other technologies.

Posted in Me, MVP | Tagged | Leave a comment

Day to Day Tasks #1

Posted on February 16, 2012 by

I have noticed that there are a lot of PowerShell and Lync tasks that I end up doing quite often in my day to day activities. So I decided to do a blog series on common tasks and this is the first post in the series.

When enabling a user for enterprise voice you need to assign a DID to the user and you don’t want to use one that is already in use. Bit how do you get a list of DIDs in use? Turns out it can be quite easy.  The following PowerShell command will give you a list of AD users and their phone numbers.

Get-AdUser -Filter * -Properties OfficePhone | FT UserPrincipalName, OfficePhone

If you want to write this to a file then you can just pipe the output to Out-File like this.

Get-AdUser -Filter * -Properties OfficePhone | FT UserPrincipalName, OfficePhone | Out-File c:\hosting\ListDIDs.txt

Since this relies on Get-AdUser you will need to make sure the cmdlet is available. You can do that by importing the AD libraries like this:

Import-Module “ActiveDirectory”

As always I hope this helps and please leave me comments if you have any tips of your own.

 

Posted in Lync, PowerShell | Tagged | Leave a comment

NextUC Now Integrating With Office 365 UM

Posted on January 27, 2012 by

As I alluded to in an earlier post, NextUC is now integrating with Office 365 for Exchange and Unified Messaging.  This is a new feature that just went live today though I have been using if for a couple of weeks and its been working great. I really believe in the concept of hosting Lync and what it can do to empower small to medium size companies. Its more cost effective than an on premise Lync installation and you don’t need a huge support staff to administer Lync and support it. Head on over for a free trial.

NextUC

Posted in Exchange, Hosting, NextUC, UM | Tagged | Leave a comment