CompuMetalGeek
diff --git a/‎docset/winserver2016-ps/defender/Set-MpPreference.md
+18-1 b/‎docset/winserver2016-ps/defender/Set-MpPreference.md
+18-1
diff --git a/‎docset/winserver2019-ps/defender/Set-MpPreference.md
+18-1 b/‎docset/winserver2019-ps/defender/Set-MpPreference.md
+18-1
diff --git a/‎docset/winserver2019-ps/laps/Find-LapsADExtendedRights.md
+154 b/‎docset/winserver2019-ps/laps/Find-LapsADExtendedRights.md
+154
@@ -35,7 +35,7 @@ Set-MpPreference [-ExclusionPath <String[]>] [-ExclusionExtension <String[]>] [-
  [-DisableCatchupFullScan <Boolean>] [-DisableCatchupQuickScan <Boolean>] [-DisableCpuThrottleOnIdleScans <Boolean>] [-DisableEmailScanning <Boolean>]
  [-DisableRemovableDriveScanning <Boolean>] [-DisableRestorePoint <Boolean>]
  [-DisableScanningMappedNetworkDrivesForFullScan <Boolean>] [-DisableScanningNetworkFiles <Boolean>]
- [-UILockdown <Boolean>] [-ThreatIDDefaultAction_Ids <Int64[]>]
+ [-UILockdown <Boolean>] [-ThreatIDDefaultAction_Ids <Int64[]>] [-AllowSwitchToAsyncInspection <Boolean>]
  [-ThreatIDDefaultAction_Actions <ThreatAction[]>] [-UnknownThreatDefaultAction <ThreatAction>]
  [-LowThreatDefaultAction <ThreatAction>] [-ModerateThreatDefaultAction <ThreatAction>]
  [-HighThreatDefaultAction <ThreatAction>] [-SevereThreatDefaultAction <ThreatAction>] [-Force]
@@ -102,6 +102,23 @@ Accept pipeline input: False
 Accept wildcard characters: False
 ```
 
+### -AllowSwitchToAsyncInspection
+
+Specifies whether to enable a performance optimization that allows synchronously inspected network flows to switch to async inspection once they have been checked and validated.
+
+```yaml
+Type: Boolean
+Parameter Sets: (All)
+Aliases: 
+
+Required: False
+Position: Named
+Default value: Enabled
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
+
 ### -CheckForSignaturesBeforeRunningScan
 Indicates whether to check for new virus and spyware definitions before Windows Defender runs a scan.
 If you specify a value of $True, Windows Defender checks for new definitions.
 
@@ -24,7 +24,7 @@ Set-MpPreference [-ExclusionPath <String[]>] [-ExclusionExtension <String[]>] [-
  [-CheckForSignaturesBeforeRunningScan <Boolean>] [-ScanPurgeItemsAfterDelay <UInt32>]
  [-ScanOnlyIfIdleEnabled <Boolean>] [-ScanParameters <ScanType>] [-ScanScheduleDay <Day>]
  [-ScanScheduleQuickScanTime <DateTime>] [-ScanScheduleOffset <UInt32>] [-SignatureFirstAuGracePeriod <UInt32>]
- [-ScanScheduleTime <HH:MM:SS>]
+ [-ScanScheduleTime <HH:MM:SS>] [-AllowSwitchToAsyncInspection <Boolean>]
  [-SignatureAuGracePeriod <UInt32>] [-SignatureDefinitionUpdateFileSharesSources <String>]
  [-SignatureDisableUpdateOnStartupWithoutEngine <Boolean>] [-SignatureFallbackOrder <String>]
  [-SignatureScheduleDay <Day>] [-SignatureScheduleTime <DateTime>] [-SignatureUpdateCatchupInterval <UInt32>]
@@ -85,6 +85,23 @@ This command configures preferences to check for definition updates 120 minutes
 
 ## PARAMETERS
 
+### -AllowSwitchToAsyncInspection
+
+Specifies whether to enable a performance optimization that allows synchronously inspected network flows to switch to async inspection once they have been checked and validated.
+
+```yaml
+Type: Boolean
+Parameter Sets: (All)
+Aliases: 
+
+Required: False
+Position: Named
+Default value: Enabled
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
+
 ### -AsJob
 Runs the cmdlet as a background job. Use this parameter to run commands that take a long time to complete. 
 
 
@@ -0,0 +1,154 @@
+---
+description: Queries Active Directory (AD) to find principals that have been granted permission to read Windows Local Administrator Password Solution (LAPS) password attributes.
+external help file: lapspsh.dll-Help.xml
+Module Name: LAPS
+online version: https://learn.microsoft.com/powershell/module/laps/find-lapsadextendedrights?view=windowsserver2019-ps&wt.mc_id=ps-gethelp
+schema: 2.0.0
+Locale: en-US
+ms.date: 04/10/2023
+title: Find-LapsADExtendedRights
+---
+
+# Find-LapsADExtendedRights
+
+## SYNOPSIS
+Queries Active Directory (AD) to find principals that have been granted permission to read Windows
+Local Administrator Password Solution (LAPS) password attributes.
+
+## SYNTAX
+
+```
+Find-LapsADExtendedRights [-Credential <PSCredential>] -Identity <String[]> [-Domain <String>]
+ [-DomainController <String>] [-IncludeComputers] [<CommonParameters>]
+```
+
+## DESCRIPTION
+
+The `Find-LapsADExtendedRights` cmdlet is used by administrators to query which principals have
+been granted permissions to read the LAPS password attributes.
+
+## EXAMPLES
+
+### Example 1
+
+```powershell
+Find-LapsADExtendedRights -Identity LapsTestOU
+```
+
+```Output
+ObjectDN                     ExtendedRightHolders
+--------                     --------------------
+OU=LapsTestOU,DC=laps,DC=com {NT AUTHORITY\SYSTEM, LAPS\Domain Admins, LAPS\LapsAdmins}
+```
+
+This example shows how to run the cmdlet.
+
+## PARAMETERS
+
+### -Credential
+
+Specifies the credentials to use when updating AD. If not specified, the current
+user's credentials are used.
+
+```yaml
+Type: System.Management.Automation.PSCredential
+Parameter Sets: (All)
+Aliases:
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
+### -Domain
+
+Specifies the name of the domain to connect to.
+
+```yaml
+Type: System.String
+Parameter Sets: (All)
+Aliases:
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
+### -DomainController
+
+Specifies the name of the domain controller to connect to.
+
+```yaml
+Type: System.String
+Parameter Sets: (All)
+Aliases:
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
+### -Identity
+
+Specifies the name of the OU to query.
+
+This parameter accepts several different name formats that influence the criteria used in the
+resultant AD search. The supported name formats are as follows:
+
+- distinguishedName (begins with a `CN=`)
+- name (for all other inputs)
+
+```yaml
+Type: System.String[]
+Parameter Sets: (All)
+Aliases:
+
+Required: True
+Position: Named
+Default value: None
+Accept pipeline input: True (ByPropertyName, ByValue)
+Accept wildcard characters: False
+```
+
+### -IncludeComputers
+
+Specify this parameter to also check computer objects for the permissions.
+
+```yaml
+Type: System.Management.Automation.SwitchParameter
+Parameter Sets: (All)
+Aliases:
+
+Required: False
+Position: Named
+Default value: None
+Accept pipeline input: False
+Accept wildcard characters: False
+```
+
+### CommonParameters
+
+This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable,
+-InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose,
+-WarningAction, and -WarningVariable. For more information, see
+[about_CommonParameters](http://go.microsoft.com/fwlink/?LinkID=113216).
+
+## INPUTS
+
+### System.String[]
+
+## OUTPUTS
+
+### System.Object
+
+## NOTES
+
+## RELATED LINKS
+
+[Windows LAPS Overview](https://go.microsoft.com/fwlink/?linkid=2233901)