Open in app

Sign up

Sign in

Write

Sign up

Sign in

Top 10 PowerShell Commands Every IT Professional Should Know

Tom
10 min readSep 3, 2024

In the ever-evolving information technology landscape, efficiency, and automation are paramount for success. As systems grow more complex and the demands on IT professionals increase, mastering tools that streamline workflows becomes essential. PowerShell, a powerful task automation framework developed by Microsoft, stands out as a critical skill for system administrators and IT professionals. It allows users to automate repetitive tasks, manage configurations, and enhance overall system management with ease.

This blog post will explore the top 10 PowerShell commands that every IT professional should familiarize themselves with. Each command will be accompanied by its use case, illustrating how it can improve your day-to-day operations and troubleshoot common issues. From managing user accounts to monitoring system performance, these essential commands will help you harness the full potential of PowerShell, enabling you to work smarter, not harder, in your IT environment. Whether you’re a beginner looking to enhance your skill set or an experienced professional seeking to refine your techniques, this guide will serve as a valuable resource in your journey toward becoming a more efficient IT administrator.

1. Get-Help

Use Case: Understanding command syntax and options.

Get-Help Get-Process

This command retrieves detailed information about the Get-Process cmdlet, including syntax, parameters, and examples. Always start with Get-Help to familiarize yourself with any command.

2. Get-Command

Use Case: Discovering available cmdlets and functions.

Get-Command -Noun Process

This command lists all cmdlets related to processes. You can filter by noun or verb to find specific commands relevant to your tasks.

3. Get-Process

Use Case: Monitoring running processes.

Get-Process

This command displays a list of all currently running processes on the local machine. You can also specify a process name to get information about a specific process.

4. Stop-Process

Use Case: Terminating a process.

Stop-Process -Name notepad -Force

This command forcefully stops the Notepad application. Use the -Force parameter cautiously to avoid data loss.

5. Get-Service

Use Case: Checking the status of services.

Get-Service

This command retrieves a list of all services on the system along with their status (Running, Stopped). You can filter by service name or status.

6. Start-Service / Stop-Service

Use Case: Managing services.

Start-Service -Name wuauserv

Stop-Service -Name wuauserv

These commands start or stop the Windows Update service, respectively. Use this for service management in your IT environment.

7. Get-EventLog

Use Case: Viewing event logs.

Get-EventLog -LogName Application -Newest 10

This command fetches the 10 most recent entries from the Application event log, allowing you to troubleshoot issues by reviewing logs.

8. Set-ExecutionPolicy

Use Case: Configuring script execution policies.

Set-ExecutionPolicy RemoteSigned

This command sets the execution policy to RemoteSigned, allowing local scripts to run while requiring downloaded scripts to be signed. This is crucial for running PowerShell scripts securely.

9. Get-ADUser

Use Case: Retrieving Active Directory user information.

Get-ADUser -Identity jdoe -Properties DisplayName, EmailAddress

This command retrieves information about a specific Active Directory user, including display name and email address. Ensure you have the Active Directory module installed and imported.

10. Invoke-Command

Use Case: Running commands on remote computers.

Invoke-Command -ComputerName Server01 -ScriptBlock { Get-Process }

This command executes a block of code on a remote computer (Server01 in this case), allowing for remote management and automation tasks.

Key Takeaways

  • Start with Basics: Familiarize yourself with Get-Help and Get-Command to build a solid foundation.
  • Process Management: Use commands like Get-Process and Stop-Process to control running applications.
  • Service Control: Manage Windows services with Get-Service, Start-Service, and Stop-Service.
  • Event Monitoring: Utilize Get-EventLog for troubleshooting by reviewing application logs.
  • Active Directory Management: Get-ADUser is essential for managing user accounts in a domain.
  • Remote Management: Leverage Invoke-Command for executing commands on remote systems effectively.

By mastering these commands, IT professionals can enhance their productivity and streamline system management tasks in their environments.

Real-World Applications

1. Get-Help

Understanding how to use PowerShell effectively starts with knowing what commands are available and how they work. The Get-Help command is the gateway to learning about other cmdlets.

Use Case: IT professionals can use Get-Help to familiarize themselves with command syntax, parameters, and examples, making it easier to apply the right command in various scenarios.

Example:

Get-Help Get-Process -Full

This command provides comprehensive information about the Get-Process cmdlet, including usage examples, parameters, and more.

2. Get-Process

Monitoring running processes on a system is crucial for troubleshooting and performance optimization. The Get-Process command retrieves a list of all processes currently running on a machine.

Use Case: System administrators can identify resource-hogging processes or verify if a specific application is running.

Example:

Get-Process | Where-Object { $_.CPU -gt 100 }

This command lists all processes consuming more than 100 CPU seconds, which can help in pinpointing performance issues.

3. Get-Service

Services are the backbone of Windows operations, and the Get-Service command provides insight into all the services running on a machine.

Use Case: IT professionals can check the status of services, start or stop services, and investigate service-related issues.

Example:

Get-Service | Where-Object { $_.Status -eq ‘Stopped’ }

This command retrieves all services that are currently stopped, allowing quick identification of services that may need to be started.

4. Set-ExecutionPolicy

PowerShell scripts can significantly enhance automation, but script execution is often restricted for security reasons. The Set-ExecutionPolicy command allows you to modify the script execution policy.

Use Case: Administrators need to set the execution policy to allow the running of scripts for automation tasks.

Example:

Set-ExecutionPolicy RemoteSigned -Scope CurrentUser

This command changes the execution policy for the current user, allowing locally created scripts to run while requiring remote scripts to be signed.

5. Get-EventLog

Event logs are a vital source of information for troubleshooting and monitoring system health. The Get-EventLog command retrieves entries from event logs.

Use Case: IT professionals can analyze system events for error tracking or security audits.

Example:

Get-EventLog -LogName System -Newest 10

This command fetches the last 10 entries from the System log, providing a quick look at recent system events.

6. Get-ADUser

For IT professionals working in environments with Active Directory, managing users is a critical task. The Get-ADUser cmdlet retrieves information about Active Directory users.

Use Case: System administrators can audit user accounts, check attributes, or gather data for reporting.

Example:

Get-ADUser -Filter * -Property DisplayName | Select-Object DisplayName

This command lists all AD users with their display names, useful for inventorying user accounts.

7. Copy-Item

File management is a common task for IT professionals, and the Copy-Item command simplifies this process by copying files and directories.

Use Case: Administrators can back up important files or deploy configurations across multiple servers.

Example:

Copy-Item -Path C:\Config -Destination D:\Backup\Config -Recurse

This command copies a configuration directory to a backup location, ensuring essential files are safely stored.

8. Invoke-Command

Remote management is a necessity in modern IT environments. The Invoke-Command cmdlet allows administrators to run commands on remote systems.

Use Case: IT professionals can execute scripts or commands across multiple servers simultaneously, saving time and effort.

Example:

Invoke-Command -ComputerName Server01, Server02 -ScriptBlock { Get-Process }

This command retrieves the list of processes running on both Server01 and Server02, showcasing the power of remote command execution.

9. Get-Command

When working with PowerShell, knowing the available commands is vital. The Get-Command cmdlet lists all cmdlets, functions, and scripts available in the current session.

Use Case: IT professionals can discover new cmdlets and identify which ones are available for their tasks.

Example:

Get-Command -Noun Process

This command lists all commands related to processes, helping professionals find the right cmdlets for process management.

10. Export-Csv

Data management often involves exporting information for reporting or analysis. The Export-Csv cmdlet allows users to export data to a CSV file.

Use Case: Administrators can generate reports from PowerShell commands and share them with stakeholders.

Example:

Get-ADUser -Filter * | Select-Object DisplayName, EmailAddress | Export-Csv -Path C:\UsersReport.csv -NoTypeInformation

This command exports a list of all Active Directory users’ display names and email addresses to a CSV file, making it easy to share or analyze user data.

Mastering these top 10 PowerShell commands equips IT professionals with the skills to manage their environments efficiently. By automating routine tasks and leveraging the power of PowerShell, system administrators can enhance their productivity and focus on more strategic initiatives, ultimately leading to a more streamlined IT operation. Whether you’re troubleshooting, managing services, or executing scripts, PowerShell is an invaluable tool in the modern IT toolkit.

Interactive Projects

1. Get-Process: Monitoring System Performance

Project: Create a System Performance Dashboard

Instructions:

  1. Open PowerShell.
  2. Run the command Get-Process | Sort-Object CPU -Descending | Select-Object -First 10.
  3. Redirect the output to a CSV file: Get-Process | Sort-Object CPU -Descending | Select-Object -First 10 | Export-Csv -Path “TopProcesses.csv” -NoTypeInformation.
  4. Open the CSV in Excel to visualize the top processes consuming CPU.

Expected Outcome: You will have a CSV file listing the top 10 CPU-consuming processes, which you can analyze for performance tuning.

2. Get-Service: Managing Windows Services

Project: Create a Service Status Report

Instructions:

  1. Open PowerShell.
  2. Use Get-Service | Where-Object { $_.Status -eq ‘Stopped’ } to find all stopped services.
  3. Export the list to a text file: Get-Service | Where-Object { $_.Status -eq ‘Stopped’ } | Export-Csv -Path “StoppedServices.csv” -NoTypeInformation.
  4. Review the CSV file to decide on services to restart.

Expected Outcome: You will generate a report on stopped services, helping you manage your system more effectively.

3. Get-EventLog: Analyzing Event Logs

Project: Create a Log Monitoring Script

Instructions:

  1. Open PowerShell.
  2. Create a script file: New-Item -Path “C:\Scripts” -Name “MonitorLogs.ps1” -ItemType File.
  3. Edit the script with the following content:

Get-EventLog -LogName System -EntryType Error -Newest 10 | Export-Csv -Path “RecentErrors.csv” -NoTypeInformation

  1. Save the script and run it by executing .\MonitorLogs.ps1.

Expected Outcome: You will have a CSV file listing the most recent system errors, allowing you to keep track of critical issues.

4. Get-Help: Utilizing PowerShell Documentation

Project: Build a Personal Help Guide

Instructions:

  1. Open PowerShell.
  2. Use Get-Command | Select-Object Name | Out-File “PowerShellCommands.txt” to create a list of commands.
  3. For each command, run Get-Help <CommandName> (replace <CommandName> with each command from the list) and append the output to your text file.

Expected Outcome: You will create a comprehensive personal guide that you can refer to for PowerShell commands and their usage.

5. Get-ChildItem: File Management Automation

Project: Organize Files by Extension

Instructions:

  1. Open PowerShell.
  2. Navigate to the directory with files: Set-Location “C:\YourDirectory”.
  3. Run the following command:

Get-ChildItem -File | Group-Object Extension | ForEach-Object {

$folderName = $_.Name.TrimStart(‘.’)

New-Item -ItemType Directory -Name $folderName -ErrorAction SilentlyContinue

Move-Item -Path $_.Group.FullName -Destination $folderName

}

Expected Outcome: Files in the directory will be organized into subfolders based on their extensions, improving your file management.

6. Set-ExecutionPolicy: Script Execution Management

Project: Enable Script Execution

Instructions:

  1. Open PowerShell as an administrator.
  2. Run the command Set-ExecutionPolicy RemoteSigned.
  3. Test the policy by creating a simple script that outputs “Hello, PowerShell!”.

Expected Outcome: You will enable script execution on your system, allowing you to run PowerShell scripts securely.

7. Get-Content: Reading Files

Project: Log File Monitor

Instructions:

  1. Open PowerShell.
  2. Create a script file: New-Item -Path “C:\Scripts” -Name “LogMonitor.ps1” -ItemType File.
  3. Edit the script with the following content:

Get-Content “C:\YourLogFile.log” -Tail 10 -Wait

  1. Save and run the script.

Expected Outcome: You will monitor a log file in real-time, gaining insights into its latest entries.

8. Export-Csv: Data Exporting

Project: User Account Export

Instructions:

  1. Open PowerShell
  2. Run the command Get-LocalUser | Export-Csv -Path “LocalUsers.csv” -NoTypeInformation.
  3. Open the CSV in Excel to review user account details.

Expected Outcome: You will have a CSV file containing information about local user accounts, aiding in user management.

9. Invoke-Command: Remote Command Execution

Project: Remote System Check

Instructions:

  1. Open PowerShell.
  2. Use the command:

Invoke-Command -ComputerName “RemotePCName” -ScriptBlock { Get-Service }

  1. Replace “RemotePCName” with the actual hostname of a remote computer.

Expected Outcome: You will retrieve the service status from a remote computer, demonstrating remote management capabilities.

10. Get-Process: Process Management

Project: Process Monitoring Script

Instructions:

  1. Open PowerShell.
  2. Create a script file: New-Item -Path “C:\Scripts” -Name “ProcessMonitor.ps1” -ItemType File.
  3. Edit the script with the following content:

Get-Process | Where-Object { $_.CPU -gt 100 } | Export-Csv -Path “HighCPUProcesses.csv” -NoTypeInformation

  1. Save and run the script.

Expected Outcome: You will generate a report of processes consuming excessive CPU time, allowing you to investigate performance issues.

By completing these projects, you’ll not only reinforce your understanding of these essential PowerShell commands but also enhance your ability to perform critical IT tasks more effectively. Embrace the power of PowerShell and take your IT skills to the next level!

Supplementary Resources

As you explore the topic of ‘Top 10 PowerShell Commands Every IT Professional Should Know’, it’s crucial to have access to quality resources that can enhance your understanding and skills as a system administrator or IT professional. Below is a curated list of supplementary materials that will provide deeper insights and practical knowledge:

Windows PowerShell Scripting Tutorial for Beginners: https://www.tutorialspoint.com/powershell/index.htm

Continuous learning is key to mastering any subject, and these resources are designed to support your journey in IT management. Dive into these materials to expand your horizons and apply new concepts to your work.

Master PowerShell with Our Comprehensive Guide!

Unlock the full potential of PowerShell with “Mastering PowerShell for System Administrators.” This essential guide is perfect for both beginners and seasoned IT professionals looking to enhance their skills. Get your copy today and start transforming your workflow!

Purchase “Mastering PowerShell for System Administrators” on Gumroad

Explore More at Tom Austin’s Hub!

Dive into a world of insights, resources, and inspiration at Tom Austin’s Website. Whether you’re keen on deepening your tech knowledge, exploring creative projects, or discovering something new, our site has something for everyone. Visit us today and embark on your journey!

Sign up to discover human stories that deepen your understanding of the world.

Free

Distraction-free reading. No ads.

Organize your knowledge with lists and highlights.

Tell your story. Find your audience.

Sign up for free

Membership

Read member-only stories

Support writers you read most

Earn money for your writing

Listen to audio narrations

Read offline with the Medium app

Try for $5/month
Powershell
It
Automation
Tom
Tom
Follow

Written by Tom

77 Followers
10 Following

IT Specialist with 10+ years in PowerShell, Office 365, Azure, and Python. UK-based author simplifying IT concepts. Freelance photographer with a creative eye.

Follow

No responses yet

Write a response

More from Tom

See all from Tom

Recommended from Medium

See more recommendations

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams