|
 |  |  |  |  |  |  |
Welcome to Vista Forums we are your forum to discuss Windows Vista x64 and x86 systems. Whether you need help or just want to post an idea you have on Vista, this is the forum for you.
 |
| |||||||
 |
| | Thread Tools | Display Modes |
12-12-2006
| #1 (permalink) |
| Guest | Active Directory Hello! I have 2 Questions: 1: How can i get the distinguished Name of the logged on User in a variable? I need this for our new LogonScript which will be written in Powershell. 2: How can i get all groupmemberships of a User, including nested Groups? If it is possible, i don't want to use the tool "ifmember.exe". Thanks for your help! Lothar |
My System Specs |
|
12-12-2006
| #2 (permalink) |
| Guest | Re: Active Directory Question 1. $root = [ADSI]"LDAP://dc=es,dc=gasnatural,dc=com" $userWMI = Get-WmiObject win32_ComputerSystem $user = $userWMI.UserName $user = $user.split("\")[1] #in case you have a domain logon, just get the name $searchAD = new-object DirectoryServices.DirectorySearcher($root) $searchAD.PageSize = 10000 $searchAD.Filter = "(`&(objectClass=user)(sAMAccountName=$($user)))" $searchResult = $($searchAD.FindAll()).getDirectoryEntry() $userDN = $searchResult.distinguishedName On Dec 12, 10:30 am, Lothar <Lot...@discussions.microsoft.com> wrote: > Hello! > I have 2 Questions: > 1: > How can i get the distinguished Name of the logged on User in a variable? I > need this for our new LogonScript which will be written in Powershell. > > 2: > How can i get all groupmemberships of a User, including nested Groups? > If it is possible, i don't want to use the tool "ifmember.exe". > > Thanks for your help! > > Lothar |
| My System Specs |
|
12-12-2006
| #3 (permalink) |
| Guest | Re: Active Directory Question 1. $root = [ADSI]"LDAP://dc=my,dc=company,dc=com" $userWMI = Get-WmiObject win32_ComputerSystem $user = $userWMI.UserName $user = $user.split("\")[1] #in case you have a domain logon, just get the name $searchAD = new-object DirectoryServices.DirectorySearcher($root) $searchAD.PageSize = 10000 $searchAD.Filter = "(`&(objectClass=user)(sAMAccountName=$($user)))" $searchResult = $($searchAD.FindAll()).getDirectoryEntry() $userDN = $searchResult.distinguishedName On Dec 12, 10:30 am, Lothar <Lot...@discussions.microsoft.com> wrote: > Hello! > I have 2 Questions: > 1: > How can i get the distinguished Name of the logged on User in a variable? I > need this for our new LogonScript which will be written in Powershell. > > 2: > How can i get all groupmemberships of a User, including nested Groups? > If it is possible, i don't want to use the tool "ifmember.exe". > > Thanks for your help! > > Lothar |
| My System Specs |
|
12-12-2006
| #4 (permalink) |
| Guest | Re: Active Directory Thank You very much! it works fine. Lothar "jorgemestre@gmail.com" wrote: > Question 1. > > $root = [ADSI]"LDAP://dc=my,dc=company,dc=com" > $userWMI = Get-WmiObject win32_ComputerSystem > $user = $userWMI.UserName > $user = $user.split("\")[1] #in case you have a domain logon, just get > the name > $searchAD = new-object DirectoryServices.DirectorySearcher($root) > $searchAD.PageSize = 10000 > $searchAD.Filter = "(`&(objectClass=user)(sAMAccountName=$($user)))" > $searchResult = $($searchAD.FindAll()).getDirectoryEntry() > $userDN = $searchResult.distinguishedName > > On Dec 12, 10:30 am, Lothar <Lot...@discussions.microsoft.com> wrote: > > Hello! > > I have 2 Questions: > > 1: > > How can i get the distinguished Name of the logged on User in a variable? I > > need this for our new LogonScript which will be written in Powershell. > > > > 2: > > How can i get all groupmemberships of a User, including nested Groups? > > If it is possible, i don't want to use the tool "ifmember.exe". > > > > Thanks for your help! > > > > Lothar > > |
| My System Specs |
|
12-12-2006
| #5 (permalink) |
| Guest | Re: Active Directory $user = $user.split("\")[-1] jorgemestre@gmail.com wrote: > Question 1. > > $root = [ADSI]"LDAP://dc=my,dc=company,dc=com" > $userWMI = Get-WmiObject win32_ComputerSystem > $user = $userWMI.UserName > $user = $user.split("\")[1] #in case you have a domain logon, just get > the name > $searchAD = new-object DirectoryServices.DirectorySearcher($root) > $searchAD.PageSize = 10000 > $searchAD.Filter = "(`&(objectClass=user)(sAMAccountName=$($user)))" > $searchResult = $($searchAD.FindAll()).getDirectoryEntry() > $userDN = $searchResult.distinguishedName > > On Dec 12, 10:30 am, Lothar <Lot...@discussions.microsoft.com> wrote: > > Hello! > > I have 2 Questions: > > 1: > > How can i get the distinguished Name of the logged on User in a variable? I > > need this for our new LogonScript which will be written in Powershell. > > > > 2: > > How can i get all groupmemberships of a User, including nested Groups? > > If it is possible, i don't want to use the tool "ifmember.exe". > > > > Thanks for your help! > > > > Lothar |
| My System Specs |
|
12-13-2006
| #6 (permalink) |
| Guest | Re: Active Directory Hello! Why -1? DOMAIN\User [0] \ [1] isn't it? On 12 dic, 23:31, "ydroam" <ydr...@gmail.com> wrote: > $user = $user.split("\")[-1] > > jorgemes...@gmail.com wrote: > > Question 1. > > > $root = [ADSI]"LDAP://dc=my,dc=company,dc=com" > > $userWMI = Get-WmiObject win32_ComputerSystem > > $user = $userWMI.UserName > > $user = $user.split("\")[1] #in case you have a domain logon, just get > > the name > > $searchAD = new-object DirectoryServices.DirectorySearcher($root) > > $searchAD.PageSize = 10000 > > $searchAD.Filter = "(`&(objectClass=user)(sAMAccountName=$($user)))" > > $searchResult = $($searchAD.FindAll()).getDirectoryEntry() > > $userDN = $searchResult.distinguishedName > > > On Dec 12, 10:30 am, Lothar <Lot...@discussions.microsoft.com> wrote: > > > Hello! > > > I have 2 Questions: > > > 1: > > > How can i get the distinguished Name of the logged on User in a variable? I > > > need this for our new LogonScript which will be written in Powershell. > > > > 2: > > > How can i get all groupmemberships of a User, including nested Groups? > > > If it is possible, i don't want to use the tool "ifmember.exe". > > > > Thanks for your help! > > > > Lothar |
| My System Specs |
|
12-13-2006
| #7 (permalink) |
| Guest | Re: Active Directory "#in case you have a domain logon, just get the name" #in case you don't have a domain logon, just get the name If there is no \ in $user, split("\")[1] should give you nothing.  The -1 should give you the last array element which should be the user name whether there is a "\" or not.  jorgemestre@gmail.com wrote: > Hello! > > Why -1? > > DOMAIN\User > [0] \ [1] > > isn't it? > > On 12 dic, 23:31, "ydroam" <ydr...@gmail.com> wrote: > > $user = $user.split("\")[-1] > > > > jorgemes...@gmail.com wrote: > > > Question 1. > > > > > $root = [ADSI]"LDAP://dc=my,dc=company,dc=com" > > > $userWMI = Get-WmiObject win32_ComputerSystem > > > $user = $userWMI.UserName > > > $user = $user.split("\")[1] #in case you have a domain logon, just get > > > the name > > > $searchAD = new-object DirectoryServices.DirectorySearcher($root) > > > $searchAD.PageSize = 10000 > > > $searchAD.Filter = "(`&(objectClass=user)(sAMAccountName=$($user)))" > > > $searchResult = $($searchAD.FindAll()).getDirectoryEntry() > > > $userDN = $searchResult.distinguishedName > > > > > On Dec 12, 10:30 am, Lothar <Lot...@discussions.microsoft.com> wrote: > > > > Hello! > > > > I have 2 Questions: > > > > 1: > > > > How can i get the distinguished Name of the logged on User in a variable? I > > > > need this for our new LogonScript which will be written in Powershell. > > > > > > 2: > > > > How can i get all groupmemberships of a User, including nested Groups? > > > > If it is possible, i don't want to use the tool "ifmember.exe". > > > > > > Thanks for your help! > > > > > > Lothar |
| My System Specs |
|
12-14-2006
| #8 (permalink) |
| Guest | Re: Active Directory oh, great! I didn't knew that, thanks! ydroam ha escrito: > "#in case you have a domain logon, just get the name" > #in case you don't have a domain logon, just get the name > > If there is no \ in $user, split("\")[1] should give you nothing. > The -1 should give you the last array element which should be the user > name whether there is a "\" or not. > > > jorgemestre@gmail.com wrote: > > Hello! > > > > Why -1? > > > > DOMAIN\User > > [0] \ [1] > > > > isn't it? > > > > On 12 dic, 23:31, "ydroam" <ydr...@gmail.com> wrote: > > > $user = $user.split("\")[-1] > > > > > > jorgemes...@gmail.com wrote: > > > > Question 1. > > > > > > > $root = [ADSI]"LDAP://dc=my,dc=company,dc=com" > > > > $userWMI = Get-WmiObject win32_ComputerSystem > > > > $user = $userWMI.UserName > > > > $user = $user.split("\")[1] #in case you have a domain logon, just get > > > > the name > > > > $searchAD = new-object DirectoryServices.DirectorySearcher($root) > > > > $searchAD.PageSize = 10000 > > > > $searchAD.Filter = "(`&(objectClass=user)(sAMAccountName=$($user)))" > > > > $searchResult = $($searchAD.FindAll()).getDirectoryEntry() > > > > $userDN = $searchResult.distinguishedName > > > > > > > On Dec 12, 10:30 am, Lothar <Lot...@discussions.microsoft.com> wrote: > > > > > Hello! > > > > > I have 2 Questions: > > > > > 1: > > > > > How can i get the distinguished Name of the logged on User in a variable? I > > > > > need this for our new LogonScript which will be written in Powershell. > > > > > > > > 2: > > > > > How can i get all groupmemberships of a User, including nested Groups? > > > > > If it is possible, i don't want to use the tool "ifmember.exe". > > > > > > > > Thanks for your help! > > > > > > > > Lothar |
| My System Specs |
|
| Thread Tools | |
| Display Modes | |
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Active Directory | Mark D. Hall | Vista mail | 1 | 09-14-2007 06:49 PM |
| Active Directory | Dyawlak | Vista security | 3 | 05-24-2007 05:15 AM |
| Active Directory | Vista General | 4 | 12-19-2006 09:27 AM | |
| Active Directory | Vista networking & sharing | 4 | 12-19-2006 09:27 AM | |
| active directory | Cameron Murray | PowerShell | 4 | 11-16-2006 11:01 AM |
Linear Mode
