![]() |
![]() | ![]() | ![]() | ![]() | ![]() | ![]() | ![]() |
| Welcome to Windows Vista Forums. Our forum is dedicated to helping you find solutions with any problems, errors or issues you are experiencing with Windows Vista. The Vista forum also covers news and updates and has an extensive Windows Vista tutorial section that covers a wide range of tips and tricks. |
| |||||||
![]() |
| |
| | #1 (permalink) |
| | Active Directory Hello! I have 2 Questions: 1: How can i get the distinguished Name of the logged on User in a variable? I need this for our new LogonScript which will be written in Powershell. 2: How can i get all groupmemberships of a User, including nested Groups? If it is possible, i don't want to use the tool "ifmember.exe". Thanks for your help! Lothar |
My System Specs![]() |
| | #2 (permalink) |
| | Re: Active Directory Question 1. $root = [ADSI]"LDAP://dc=es,dc=gasnatural,dc=com" $userWMI = Get-WmiObject win32_ComputerSystem $user = $userWMI.UserName $user = $user.split("\")[1] #in case you have a domain logon, just get the name $searchAD = new-object DirectoryServices.DirectorySearcher($root) $searchAD.PageSize = 10000 $searchAD.Filter = "(`&(objectClass=user)(sAMAccountName=$($user)))" $searchResult = $($searchAD.FindAll()).getDirectoryEntry() $userDN = $searchResult.distinguishedName On Dec 12, 10:30 am, Lothar <Lot...@discussions.microsoft.com> wrote: > Hello! > I have 2 Questions: > 1: > How can i get the distinguished Name of the logged on User in a variable? I > need this for our new LogonScript which will be written in Powershell. > > 2: > How can i get all groupmemberships of a User, including nested Groups? > If it is possible, i don't want to use the tool "ifmember.exe". > > Thanks for your help! > > Lothar |
My System Specs![]() |
| | #3 (permalink) |
| | Re: Active Directory Question 1. $root = [ADSI]"LDAP://dc=my,dc=company,dc=com" $userWMI = Get-WmiObject win32_ComputerSystem $user = $userWMI.UserName $user = $user.split("\")[1] #in case you have a domain logon, just get the name $searchAD = new-object DirectoryServices.DirectorySearcher($root) $searchAD.PageSize = 10000 $searchAD.Filter = "(`&(objectClass=user)(sAMAccountName=$($user)))" $searchResult = $($searchAD.FindAll()).getDirectoryEntry() $userDN = $searchResult.distinguishedName On Dec 12, 10:30 am, Lothar <Lot...@discussions.microsoft.com> wrote: > Hello! > I have 2 Questions: > 1: > How can i get the distinguished Name of the logged on User in a variable? I > need this for our new LogonScript which will be written in Powershell. > > 2: > How can i get all groupmemberships of a User, including nested Groups? > If it is possible, i don't want to use the tool "ifmember.exe". > > Thanks for your help! > > Lothar |
My System Specs![]() |
| | #4 (permalink) |
| | Re: Active Directory Thank You very much! it works fine. Lothar "jorgemestre@gmail.com" wrote: > Question 1. > > $root = [ADSI]"LDAP://dc=my,dc=company,dc=com" > $userWMI = Get-WmiObject win32_ComputerSystem > $user = $userWMI.UserName > $user = $user.split("\")[1] #in case you have a domain logon, just get > the name > $searchAD = new-object DirectoryServices.DirectorySearcher($root) > $searchAD.PageSize = 10000 > $searchAD.Filter = "(`&(objectClass=user)(sAMAccountName=$($user)))" > $searchResult = $($searchAD.FindAll()).getDirectoryEntry() > $userDN = $searchResult.distinguishedName > > On Dec 12, 10:30 am, Lothar <Lot...@discussions.microsoft.com> wrote: > > Hello! > > I have 2 Questions: > > 1: > > How can i get the distinguished Name of the logged on User in a variable? I > > need this for our new LogonScript which will be written in Powershell. > > > > 2: > > How can i get all groupmemberships of a User, including nested Groups? > > If it is possible, i don't want to use the tool "ifmember.exe". > > > > Thanks for your help! > > > > Lothar > > |
My System Specs![]() |
| | #5 (permalink) |
| | Re: Active Directory $user = $user.split("\")[-1] jorgemestre@gmail.com wrote: > Question 1. > > $root = [ADSI]"LDAP://dc=my,dc=company,dc=com" > $userWMI = Get-WmiObject win32_ComputerSystem > $user = $userWMI.UserName > $user = $user.split("\")[1] #in case you have a domain logon, just get > the name > $searchAD = new-object DirectoryServices.DirectorySearcher($root) > $searchAD.PageSize = 10000 > $searchAD.Filter = "(`&(objectClass=user)(sAMAccountName=$($user)))" > $searchResult = $($searchAD.FindAll()).getDirectoryEntry() > $userDN = $searchResult.distinguishedName > > On Dec 12, 10:30 am, Lothar <Lot...@discussions.microsoft.com> wrote: > > Hello! > > I have 2 Questions: > > 1: > > How can i get the distinguished Name of the logged on User in a variable? I > > need this for our new LogonScript which will be written in Powershell. > > > > 2: > > How can i get all groupmemberships of a User, including nested Groups? > > If it is possible, i don't want to use the tool "ifmember.exe". > > > > Thanks for your help! > > > > Lothar |
My System Specs![]() |
| | #6 (permalink) |
| | Re: Active Directory Hello! Why -1? DOMAIN\User [0] \ [1] isn't it? On 12 dic, 23:31, "ydroam" <ydr...@gmail.com> wrote: > $user = $user.split("\")[-1] > > jorgemes...@gmail.com wrote: > > Question 1. > > > $root = [ADSI]"LDAP://dc=my,dc=company,dc=com" > > $userWMI = Get-WmiObject win32_ComputerSystem > > $user = $userWMI.UserName > > $user = $user.split("\")[1] #in case you have a domain logon, just get > > the name > > $searchAD = new-object DirectoryServices.DirectorySearcher($root) > > $searchAD.PageSize = 10000 > > $searchAD.Filter = "(`&(objectClass=user)(sAMAccountName=$($user)))" > > $searchResult = $($searchAD.FindAll()).getDirectoryEntry() > > $userDN = $searchResult.distinguishedName > > > On Dec 12, 10:30 am, Lothar <Lot...@discussions.microsoft.com> wrote: > > > Hello! > > > I have 2 Questions: > > > 1: > > > How can i get the distinguished Name of the logged on User in a variable? I > > > need this for our new LogonScript which will be written in Powershell. > > > > 2: > > > How can i get all groupmemberships of a User, including nested Groups? > > > If it is possible, i don't want to use the tool "ifmember.exe". > > > > Thanks for your help! > > > > Lothar |
My System Specs![]() |
| | #7 (permalink) |
| | Re: Active Directory "#in case you have a domain logon, just get the name" #in case you don't have a domain logon, just get the name If there is no \ in $user, split("\")[1] should give you nothing. ![]() The -1 should give you the last array element which should be the user name whether there is a "\" or not. ![]() jorgemestre@gmail.com wrote: > Hello! > > Why -1? > > DOMAIN\User > [0] \ [1] > > isn't it? > > On 12 dic, 23:31, "ydroam" <ydr...@gmail.com> wrote: > > $user = $user.split("\")[-1] > > > > jorgemes...@gmail.com wrote: > > > Question 1. > > > > > $root = [ADSI]"LDAP://dc=my,dc=company,dc=com" > > > $userWMI = Get-WmiObject win32_ComputerSystem > > > $user = $userWMI.UserName > > > $user = $user.split("\")[1] #in case you have a domain logon, just get > > > the name > > > $searchAD = new-object DirectoryServices.DirectorySearcher($root) > > > $searchAD.PageSize = 10000 > > > $searchAD.Filter = "(`&(objectClass=user)(sAMAccountName=$($user)))" > > > $searchResult = $($searchAD.FindAll()).getDirectoryEntry() > > > $userDN = $searchResult.distinguishedName > > > > > On Dec 12, 10:30 am, Lothar <Lot...@discussions.microsoft.com> wrote: > > > > Hello! > > > > I have 2 Questions: > > > > 1: > > > > How can i get the distinguished Name of the logged on User in a variable? I > > > > need this for our new LogonScript which will be written in Powershell. > > > > > > 2: > > > > How can i get all groupmemberships of a User, including nested Groups? > > > > If it is possible, i don't want to use the tool "ifmember.exe". > > > > > > Thanks for your help! > > > > > > Lothar |
My System Specs![]() |
| | #8 (permalink) |
| | Re: Active Directory oh, great! I didn't knew that, thanks! ydroam ha escrito: > "#in case you have a domain logon, just get the name" > #in case you don't have a domain logon, just get the name > > If there is no \ in $user, split("\")[1] should give you nothing. ![]() > The -1 should give you the last array element which should be the user > name whether there is a "\" or not. ![]() > > > jorgemestre@gmail.com wrote: > > Hello! > > > > Why -1? > > > > DOMAIN\User > > [0] \ [1] > > > > isn't it? > > > > On 12 dic, 23:31, "ydroam" <ydr...@gmail.com> wrote: > > > $user = $user.split("\")[-1] > > > > > > jorgemes...@gmail.com wrote: > > > > Question 1. > > > > > > > $root = [ADSI]"LDAP://dc=my,dc=company,dc=com" > > > > $userWMI = Get-WmiObject win32_ComputerSystem > > > > $user = $userWMI.UserName > > > > $user = $user.split("\")[1] #in case you have a domain logon, just get > > > > the name > > > > $searchAD = new-object DirectoryServices.DirectorySearcher($root) > > > > $searchAD.PageSize = 10000 > > > > $searchAD.Filter = "(`&(objectClass=user)(sAMAccountName=$($user)))" > > > > $searchResult = $($searchAD.FindAll()).getDirectoryEntry() > > > > $userDN = $searchResult.distinguishedName > > > > > > > On Dec 12, 10:30 am, Lothar <Lot...@discussions.microsoft.com> wrote: > > > > > Hello! > > > > > I have 2 Questions: > > > > > 1: > > > > > How can i get the distinguished Name of the logged on User in a variable? I > > > > > need this for our new LogonScript which will be written in Powershell. > > > > > > > > 2: > > > > > How can i get all groupmemberships of a User, including nested Groups? > > > > > If it is possible, i don't want to use the tool "ifmember.exe". > > > > > > > > Thanks for your help! > > > > > > > > Lothar |
My System Specs![]() |
![]() |
| Thread Tools | |
| |
Similar Threads | ||||
| Thread | Forum | |||
| active directory | PowerShell | |||
| Active Directory | Vista mail | |||
| Active Directory | Vista General | |||
| Active Directory | Vista networking & sharing | |||
| active directory | PowerShell | |||