PowerShell server connectivity quick check
A concise read-only connectivity triage script that separates DNS, ICMP reachability, and expected TCP-port failures before escalation.
Toolchest Topic
Reusable PowerShell and command starters for repeatable admin work, quick checks, and practical automation.
Use this lane when you already understand the problem space and need the reusable operator asset, not just the concept page.
A concise read-only connectivity triage script that separates DNS, ICMP reachability, and expected TCP-port failures before escalation.
A read-only Windows Server health snapshot that returns one compact row per host for uptime, disk pressure, memory headroom, stopped automatic services, and recent system errors.
A read-only pending reboot check for Windows servers before patching, application installs, or maintenance-window closure.
A read-only certificate inventory that finds local-machine store certificates nearing expiration and captures certificates presented by known TLS endpoints for review.
A read-only IIS inventory that correlates sites, bindings, ports, host headers, app-pool identities, content paths, and certificate thumbprints for migration or renewal work.
A read-only local administrator audit that records privileged group membership across Windows endpoints for review.
A read-only file share audit that records SMB share permissions, NTFS access, and ownership evidence for review.
A read-only service account discovery pass for Windows services, scheduled tasks, and IIS application pools.
A read-only Windows Firewall audit that records enabled allow rules, ports, profiles, and address scopes.
A read-only DNS audit that compares forward and reverse lookup results across host lists and expected DNS servers.
A read-only PowerShell inventory starter for collecting installed applications from local or remote Windows endpoints.
A read-only RDP triage script pattern for DNS, TCP 3389, listener state, firewall evidence, sessions, and event logs.
A safer Robocopy job template with dry-run review, log capture, exit-code interpretation, and migration evidence.
A safer starting point for repeatable Windows file copy jobs with logging and dry-run review.
Reusable starter for Azure Arc onboarding waves using a host CSV, dry-run expectations, per-host logging, and repeatable result tracking suitable for tickets, change records, and post-wave reporting.
Operator-ready planning template for Azure Update Manager patch waves covering scope, maintenance windows, reboot tolerance, exclusions, soak periods, rollback contacts, and stop-go criteria before scheduled patching.
Collect non-replicated lastLogon values from every writable domain controller, calculate the newest observed logon per account, and export evidence suitable for stale-user or stale-computer cleanup decisions without relying on replicated lastLogonTimestamp alone.
PowerShell scanner that checks fixed local drives on Windows servers for root ACL entries where Authenticated Users have broad access. Produces console and CSV evidence so admins can review exposure before any ACL changes.