MUY Belgium
Reputation: 2452
How to check is a user is in a Domain group?
I want to check group membership of a user. Group are taken from an ldap and inserted into a domain. For the moment I tried something like this...
#Powershell.ps1
$CurrentUser = [System.Security.Principal.WindowsIdentity]::GetCurrent()
$wp = New-Object System.Security.Principal.WindowsPrincipal($CurrentUser)
# I have in my domain a group called 'dom_group'
if ( $wp.IsInRole('dom_group') ) {
"Expected to be true"
} else {
"Unexpected False"
}
#Unexpected False
Unfortunately, this works only for local groups.
How can I check the group membership of the current use against the domain group 'dom_group'?
Upvotes: 0
Views: 1610
Answers (1)
Jeroen Mostert
Reputation: 28789
Your code will work, but you must qualify the group name with the name of your domain: $wp.IsInRole('mydomain\dom_group') or $wp.IsInRole('dom_group@mydomain').
Upvotes: 2
Related Questions
- Check if the user is a member of a list of AD groups
- Powershell - Test if user is part of any Groups
- PowerShell Check User Group Membership
- Powershell Script that takes username and checks security groups
- See if a any of a list of users, is a member of an AD group
- Get security groups members Domain\Username
- Determine if user is member of local group in Powershell
- Determining if a given user is in a given global group
- How to check if a user is in a particular group from a particular OU in Powershell
- Powershell, how to check group memberships for AD users