All control panel commands to run from CMD prompt or PowerShell

Keep forgetting which commands to run for Control panel items?
Here's the list:

Command Name	What does it do?
appwiz.cpl	Uninstall or Change A Program
azman.msc	Authorization Manager
bthprops.cpl	Bluetooth & Other Devices
certlm.msc	Certificate Manager for Local Computer
certmgr.msc	Certificate Manager for Current User
comexp.msc	Component Services, Event Viewer, Services
compmgmt.msc	Computer Management, System Tools, Storage and Services
desk.cpl	Display layout
devmgmt.msc	Device Manager
DevModeRunAsUserConfig.msc	Start Menu Configuration
diskmgmt.msc	Disk Management
eventvwr.msc	Event Viewer
Firewall.cpl	Firewall Manager
fsmgmt.msc	Shared Folder Management
gpedit.msc	Local GPO Editor
hdwwiz.cpl	Device Manager (again!)
inetcpl.cpl	Internet Properties
intl.cpl	Region Settings
irprops.cpl	InfraRed - on systems with IR
joy.cpl	Game Controller
lusrmgr.msc	Local User Manger
main.cpl	Mouse Properties
mmsys.cpl	Sound Properties
ncpa.cpl	Network Interface properties
perfmon.msc	Performance Monitor
powercfg.cpl	Power Configuration
printmanagement.msc	Printer Manament
rsop.msc	Resultant Set of Policy
secpol.msc	Local Securityh Policy
services.msc	Services
sysdm.cpl	System Properties
TabletPC.cpl	Tablet and Pen Settings
taskschd.msc	Task Scheduler
telephon.cpl	Phone Location Information
timedate.cpl	Time and Date
tpm.msc	Trusted Platform Module
WF.msc	Defender Firewall
WmiMgmt.msc	WMI Management
wscui.cpl	Security and Maintenance

Install PowerShell 7 with PowerShell Silently

Yesterday PowerShell 7 became GA, this means that I want to upgrade to this version the fastest way possible.
There's only one way to do this:

Invoke-WebRequest -Uri "https://github.com/PowerShell/PowerShell/releases/download/v7.0.3/PowerShell-7.0.3-win-x64.msi" -OutFile "$env:TEMP\PowerShell-7.0.3-win-x64.msi"

$msifile = "$env:TEMP\PowerShell-7.0.0-win-x64.msi"
$arguments = @(
          "/i"
          "`"$msiFile`""
          "/passive"
)
Start-Process -FilePath msiexec.exe -Wait -PassThru -ArgumentList $arguments

Or the preview version:

Invoke-WebRequest -Uri "https://github.com/PowerShell/PowerShell/releases/download/v7.1.0-preview.6/PowerShell-7.1.0-preview.6-win-x64.msi" -OutFile "$env:TEMP\PowerShell-7.1.0-preview.6-win-x64.msi"

$msifile = "$env:TEMP\PowerShell-7.1.0-preview.6-win-x64.msi"
$arguments = @(
          "/i"
          "`"$msiFile`""
          "/passive"
)
Start-Process -FilePath msiexec.exe -Wait -PassThru -ArgumentList $arguments

Keep in mind that with PowerShell 7 the ISE is no longer available, and you need to shift to VisualStudio Code.
https://code.visualstudio.com/

Or with this oneliner:

iex "& { $(irm https://aka.ms/install-powershell.ps1) } -UseMSI"

Roll Over Kerberos Decryption Key - Untill the uservoice feature gets implemented

Every 30 days your are required by Microsoft to "rollover" the Pass-throug Authentication Kerberos key for your tenant.

In the near future you don’t need to perform any Powershell or scripting referring to Microsoft user voice “We are currently working on an approach that will allow Tenant Admins to do key rollover from the Azure AD portal; without the need for PowerShell or scripting”

But until then we do this:

On your AzureADConnect machine go to:

PS C:\> cd '.\Program Files\Microsoft Azure Active Directory Connect'

Then import:

PS C:\Program Files\Microsoft Azure Active Directory Connect> Import-Module .\AzureADSSO.psd1

Run the commandlet New-AzureADSSOAuthenticationContext:

PS C:\Program Files\Microsoft Azure Active Directory Connect> New-AzureADSSOAuthenticationContext

Check the current status:

PS C:\Program Files\Microsoft Azure Active Directory Connect> Get-AzureADSSOStatus

{"Enable":true,"Exists":true,"Domains":["domain.lan"],"IsSuccessful":true,"ErrorMessage":""}

Then enter your on-premises domain administrator credentials:

PS C:\Program Files\Microsoft Azure Active Directory Connect> $creds = Get-Credential

Then run the command to rollover the key's Update-AzureADSSOForest -OnPremCredentials $creds:

PS C:\Program Files\Microsoft Azure Active Directory Connect> Update-AzureADSSOForest -OnPremCredentials $creds

The output should look like this:

[12:10:32.685] [  5] [INFORMATIONAL] UpdateComputerAccount: Locating SSO computer account in DOMAIN...
[12:10:32.701] [  5] [INFORMATIONAL] GetDesktopSsoComputerAccount: Searching in global catalog(forest) and DOMAIN for co
mputer account AZUREADSSOACC
[12:10:33.232] [  5] [INFORMATIONAL] TrySearchAccountUnderGlobalCatalog: Object was found in global catalog(forest), hen
ce skipping DOMAIN search
[12:10:33.232] [  5] [INFORMATIONAL] UpdateComputerAccount: Found SSO computer account at CN=AZUREADSSOACC,CN=Computers,
DC=domain,DC=lan. Updating its properties...
[12:10:33.232] [  5] [INFORMATIONAL] UpdateComputerAccount: Granting full control to account admins and enterprise admin
s for computer account CN=AZUREADSSOACC,CN=Computers,DC=domain,DC=lan...
[12:10:33.907] [  5] [INFORMATIONAL] UpdateComputerAccount: Successfully updated SSO computer account properties.
The operation completed successfully
PS C:\Program Files\Microsoft Azure Active Directory Connect>