Powershell instance domain controller (collected)

Enterprise 2019-11-12 08:27:47 views: null

1, the query AD, the default password policy
Get-ADDefaultDomainPasswordPolicy

  1. AD query, the user who selected the "Password never expires" in selected top
    Get-ADUser -Filter 'PasswordNeverExpires -eq $ true' -Server DCHostname | select name
    if only refer to a query under the OU, you can add qualifications :
    -SearchBase 'the OU = Test, = Youdomain the DC, the DC = the COM'

3. AD query, the user has locked the
GET-ADUser -filter -properties | {.} $ _ LockedOut WHERE |. Ft name, LockedOut

4. Query AD, the member is empty AD groups (for the user)
the Get-ADGroup the -Filter * and -Properties, which Members | -not $ _ {WHERE Members.} | SELECT the Name

The user unlocks the locked
Unlock-ADAccount -Identity xxxxxx

6. find out if a user locks
get-aduser test -properties * | ft name, lockedout

7. Repair damaged trust between the client and the domain
input cmdlet:
the Test-ComputerSecureChannel -Server "controller.domain.com"

OU query is not registered in AD account all month:
the PS C: \ the Users \ Administrator> the Get-ADUser -SearchBase '= rightdo the DC, the DC = NET' -filter and -Properties, which | the Select Object-the Name, the SID, the Created, PasswordLastSet , n-{@ = "lastLogonDate"; E = {[datetime] :: FromFileTime ($ .lastLogonTimestamp)}} | $ {WHERE .lastlogondate -LT-(GET-DATE) .AddDays (-30)}

Query OU created in time for all accounts \ SID \ password last modified time \ last login time
the Get-ADUser -SearchBase '= rightdo DC, DC = NET' -filter -Properties | the Select-Object the Name, SID, the Created, PasswordLastSet , @ {n = "lastLogonDate" ; e = {[datetime] :: FromFileTime ($ _ lastLogonTimestamp.)}}

首先导出csv文件
Get-ADUser -Filter -Properties | where {$_.UserPrincipalName -ne $null} | Select-Object SamAccountName,EmployeeID,EmployeeType,description | Export-Csv -Encoding Utf8 -NoTypeInformation c:\aduserinfo.csv

Modify the exported user information is updated after the
Import-Csv -Path c:. \ Aduserinfo.csv | {foreach the Set-ADUser -Identity $ SamAccountName -EmployeeID $ .EmployeeID
the -replace EmployeeType = @ {$ .EmployeeType; the Description = $ .description }}

Guess you like

Origin blog.51cto.com/907832555/2449557
Recommended
Ranking
A quick primer on numpy basics
Two sister tease python project
Java | Multiple keywords in the replacement content are returned to the front end in red style
C ++: references
The string leetcood 1018 is a binary prefix divisible by 5
Flutter 布局组件
Java combat spingboot-redis
PMP pre-exam sprint and wrong questions sorting
ActiveMq C# Message Features: Delayed and Timed Message Delivery
DSP28377S_ copy a program from the RAM to FLASH portion DETAILS
Daily
More
2024-05-16(23)
2024-05-15(5)
2024-05-14(9)
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)

Code World

© 2018 codetd.com