Reputation: 23
Using a different active directory tree in powershell
So I have a script with the purpose of scanning devices that start with a certain name, then return results of computers missing a group. My problem is, the device I need it to run from turns out not to be in the same tree. I have seen some commands, but I wanted to be sure I had the syntax right. I will include part of the script for context:
Import-Module ActiveDirectory
$Group = "A-Certain-Group"
$Groupname = (Get-ADGroup $Group).distinguishedName
$Computers = Get-ADComputer -filter "name -like 'Big*'" -Prop MemberOf | Where{$_.MemberOf -notcontains $Groupname}
So let's say I am running it from "company.net", and it needs to perform the above script on "companynet.net" instead. What is the proper method?
Upvotes: 0
Views: 359
Answers (1)
Reputation: 1772
The AD cmdlets all have a -server parameter which lets you specify other domains. Just use it to specify the other domain assuming there is a trust.
$Groupname = (Get-ADGroup $Group -Server companynet.net).distinguishedName
$Computers = Get-ADComputer -Server companynet.net -filter "name -like 'Big*'" -Prop MemberOf | Where{$_.MemberOf -notcontains $Groupname}
Note that if you don't have permission to perform actions in the domain you will also need to use the -credential parameter.
Upvotes: 1
Related Questions
- Binding to a different active directory ldap instance in Powershell
- Updating Active Directory via PowerShell
- Active directory in PowerShell
- Powershell Commands
- Trying to modify Active Directory with PowerShell
- Changing Powershell Output
- Active Directory Module
- New azure active directory with powershell
- Powershell Join
- Powershell Active Directory