Who… What… Where…

Home > Scripting Snippets > AD Command Line Queries

AD Command Line Queries

February 16th, 2009 Leave a comment Go to comments

There are a number of ways to query the Active Directory database to export objects and there attributes. One of the most common groups of tools are provided by Microsoft; dsget and dsquery.

Query Group Members

To display the member of a specific group use the dsget group command

dsget group “CN=My Group,OU=Domain Groups,DC=Domain,DC=co,DC=uk” -members

The above command will list the UPN of the users in My Group, if more information is required from each of the users within My Group the output can be piped into another dsget command

To display the member of a specific group use the dsget group command

dsget group “CN=My Group,OU=Domain Groups,DC=Domain,DC=co,DC=uk” -members | dsget user -upn -display -disabled -acctexpires

This commnd above will list the users in the group My Group with there UPN, display name, if the account is disabled and when the account expires.

Categories: Scripting Snippets Tags: Active Directory, CLI, Query

Comments (1) Trackbacks (0) Leave a comment Trackback

Loonnadom

May 18th, 2009 at 00:38 | #1

Reply | Quote

mm… thank you )

No trackbacks yet.

VB Query Active Directory Objects SVCHOST High CPU Usage Issue

AD Command Line Queries

Query Group Members

Who... What... Where...

Archives

Categories