About four days ago, the update rollup of March 2014 for Windows 8.1 or Windows Server 2012 R2 was released. This bundle contains KB2923122 that aims at fixing the following error:
Get-ADUser : One or more properties are invalid.
Parameter name: msDS-AssignedAuthNPolicy
While the workarounds were easy,
- you could either specify the list of properties (consider this as a solution for automation because it performs faster)
- or you could pipe it to the Get-ADObject cmdlet
- or upgrade the schema to version 69 (see this post)
(…and I only have ~70 computers in AD)
Get-ADUser administrator | Get-ADObject -Properties *
Get-ADObject (dir AD:\ | Where Name -eq "Schema").DistinguishedName -Properties objectVersion
… it got finally fixed by either the above standalone hotfix or update rollup 😀
I’ve applied the update rollup to my workstation and here’s how to see what KB was applied:
Get-HotFix -Id "KB2928680" Get-HotFix | ? HotfixId -match "2923122"