Reputation: 23
How to copy members from one security group to another security group in AD using PowerShell v4?
I'm relatively new to PowerShell and am trying to learn it for a project at work involving Active Directory. The task I have is to compare the members of two different security groups in AD (both groups are located in the same OU) and copy the members from Group 2 that are not in Group 1 over to Group 1.
I came across this link that showed how to compare groups but:
- The code segment listed on this website returns both the members from Group 1 that aren't in Group 2 and the members from Group 2 that aren't in Group 1 which is way more information than I need
- Once I get the list I don't know how to use that to enter into a command or script to copy those members to the appropriate group.
Upvotes: 2
Views: 20579
Answers (3)
Reputation: 61
Given two security groups, DestinationGroup (Group 1), SourceGroup (Group 2):
Add-ADGroupMember -Identity "DistinguishedName of DestinationGroup" -Members (Get-ADGroupMember -Identity "DistinguishedName of SourceGroup" | Select-Object -ExpandProperty distinguishedName)
Upvotes: 1
Reputation: 1018
I found another solution which is very easy that I could not resist to share with you all:
Get-ADGroupMember -Identity GROUP-A | Add-ADPrincipalGroupMembership -MemberOf GROUP-B
Get-ADGroupMember gets all the members of GROUP-A and pipes into Add-ADPrincipalGroupMembership cmdlet that added the incoming members to GROUP-B.
Upvotes: 1
Reputation: 1990
Here you go. Try the below script which I have written for your requirement.
#Input Parameters. Change these as per your requirement
$group1 = "Group1Name"
$group2 = "Group2Name"
$membersInGroup1 = Get-ADGroupMember $group1
$membersInGroup2 = Get-ADGroupMember $group2
if($membersInGroup1 -eq $null)
{
Add-ADGroupMember -Identity $group1 -Members $membersInGroup2
}
elseif($membersInGroup2 -ne $null)
{
$separateMembers = diff $membersInGroup1 $membersInGroup2
if($separateMembers -ne $null)
{
foreach($member in $separateMembers)
{
$currentUserToAdd = Get-ADUser -Identity $member.InputObject
Add-ADGroupMember -Identity $group1 -Members $currentUserToAdd
}
}
}
Let me know if you face any issues.
Upvotes: 2
Related Questions
- How to get list of Active Directory group names beginning with "ABC_" in PowerShell?
- Copy Groups from one user to another in AD, except one specific group
- Sync members of a particular Azure AD group as owners to all other AD groups using PowerShell
- How can I copy members of one local group to another local group using PowerShell?
- PowerShell script to return members of multiple security groups
- How to get the members from multiple security groups using ASP.NET C# WebForms?
- Copying AD group members to another AD group
- Get AD group members using powershell
- Adding Users to Groups from another Domain with Powershell