In version 3 of AddShortcuts.ps1, on line 604:

$lnks += getAllValidExtsForDrive -path $res -drive $drive -prefix "$($profiledir)\Desktop\" -extension ".lnk"  

Should be

$lnks += getAllValidLNKSForDrive -path $res -drive $drive -prefix "$($profiledir)\Desktop\" 

using getAllValidExtsForDrive does not check for the target object's existence

Would it be possible to add VLC Player and Bytello Screen Share. https://www.bytello.com/ssp

Also does this work with Intune installed office applications.

The -HKUAppsFailure parameter passed to SaveResult on line 681 passes the variable named $hku_apps_failure. The variable is $hku_apps_failures (with an 's') on line 677 though so that value won't get logged to the registry correctly.

If we add

$lnks += getAllValidLNKsForDrive -path $res -drive $drive -prefix "Users\Public\Desktop\"

after line 483 in v1.1 of the script this would seem to allow retrieval of public desktop icons from VSS

"A respository for MDATP PowerBI Templates"
should be
"A repository for MDATP PowerBI Templates"

Add the additional two applications mentioned in the title. Both had their shortcuts removed as part of the ASR malfunction.

Hello, i ran the script but it didn't work for the microsoft 365 apps for entreprise.

If i repair the applications by hand it works.

Do you have a solution to apply on the script?

Thank you in advance

Chrome, Office Appa and Firefox appeared so I know it works however Remote Desktop App is still missing.

Hi,

After running the script AddShortcuts known folders are now in mixed languages, both Swedish and English - not OK :-(

How do we resolve this issue?

Me and my co-workers are running Swedish Windows 11 22H2.

There are important files that Microsoft projects should all have that are not present in this repository. A pull request has been opened to add the missing file(s). When the pr is merged this issue will be closed automatically.

Microsoft teams can learn more about this effort and share feedback within the open source guidance available internally.

Merge this pull request

Script only runs on en-US due to localizaion of group names - use well-known SID in function instead:

Function CopyAclFromOwningDir($path) {
$base_path = Split-Path -Path $path
$acl = Get-Acl $base_path
$SID = "S-1-5-32-544"
$Group = (New-Object System.Security.Principal.SecurityIdentifier($SID)).Translate([System.Security.Principal.NTAccount])
$acl.SetOwner($group)
Set-Acl $path $acl
}

Hello,

Following the instructions on the page i've setup a powershell script to run on the "TestUser" group which I have created in Microsoft Endpoint Manager. This group consists of 2 users and 2 devices, however despite trying several times, the script to restore the shortcut's deleted by the microsoft defender update still does not run. It simply lists the script as "0 successes, 0 errors on 0 devices".

Trying to run the restore.ps1 script on my device locally throws a "UnauthorizedAccess" error.

How do I fix this? I've searched around and made sure that my device and workaccount are linked/enrolled via Azure AD, yet I still cant make the restore shortcut script run.

Under device status in the script my device is simply listed as "Status: Unknown", yet I can see OS version, device ID and username associated.

Please add the following Applications:

"Acrobat Reader" = "AcroRd32.exe"
"KeePass 2" = "KeePass.exe"
"Citrix Workspace" = "SelfService.exe" -showAppPicker"
"paint.net" = "paint.net"
"Docker Desktop" = "Docker Desktop.exe"

Hi,

The script AddShortcuts doesn't resolve user pinned shortcuts in the Taskbar, in my case OneNote, Word, Excel, PowerPoint and an Edge PWA-app.

test

Great script, but currently only works with applications registered in the specific registry key.

If we were able to specify a full path for apps requiring them and then modify the code to test if a full path is provided, then this would increase flexibility - (scrappily coded) eg:

"KeePass" = "C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe"

Then modify the code between line 111 and 119 (inclusive)to:

        if ($testFullPath) {
            if (test-path $_.value) {
                $target=$_.value
                #LogAndConsole "Full path specified and exists for $($_.key)"
            }
        } 
        if (-not ($testFullPath -or $target))
        {        
            try { $apppath = Get-ItemPropertyValue $reg_path -Name "Path" -ErrorAction SilentlyContinue } catch {}
            if ($apppath -ne $null)
            {
                $target = $apppath + "\" + $_.Value
            }
            else
            {
                try { $target = Get-ItemPropertyValue $reg_path -Name "(default)" -ErrorAction SilentlyContinue } catch {}
            }
        }

This could allow flexibility to do so with minimal change, albeit this does not allow for custom file locations (or potential 32 bit/64 bit variations).

Not saying this is appropriate in every environment or situation but looks like it will work in ours

I get this error:
[+] Starting LNK rescue - Script version: v2
[+] Saved Result: ScriptResult=Failure (1), TimeStamp=2023-01-17T08:51:24.2825358Z, NumLinksFound=0, HKUAppSuccess=0, HKUAppFailure=0, HKLMSuccess=0, HKLMFailure=0, ScriptError=Cannot bind argument to parameter 'Path' because it
is null. in registry HKLM:Software\Microsoft\ASRFix

I am running the script from powershell ISE, elevated as administrator.

Multiple shortcut items in submenues is not recreated with this script.

Zoom shortcut item in start menu is installend under Zoom\Zoom.lnk
Same for Jabra -Direct.lnk witch is placed under \Jabra.
These items is not recreated in our enviroment.

@YongRhee-MSFT - I'm trying to track down firewall events, and came across two Microsoft projects for MDE Power BI templates?

Do you know which one is actively maintained? MDE has deleted the firewall dashboard, and this one using Fully spelled Defender for Endpoint has it up.

This might be a candidate for merging or archive one.

Thanks,
Rich

PS any reason why the FW dashboard was deleted in this github?