get all groups of user with other user object properties

Question

I am new to powershell and wanted to learn how to get the groups belonging to a user as well as other user object properties in the format below (repeating the user and email for each group):

username user_email        user_groups
user1   user1@domain.com   group1
user1   user1@domain.com   group2
user1   user1@domain.com   group3
user2   user2@domain.com   group1
user2   user2@domain.com   group2
...

I understand that this gets the groups of a user but unsure of how to include other user objects and have it repeated in the above format:

Get-ADPrincipalGroupMembership username | select name

PowerShellGuy · Accepted Answer

You'll want to get your ADUser objects, expand their memberof property, iterate through those, and get the ad group of each.

$username = "PowerShellGuy"
$adUserObj = Get-ADUser -Filter "SamAccountName -eq '$username'" -properties memberof
$groups = $adUserObj.MemberOf | Get-ADgroup

You can one-line it like this

Get-ADUser -Filter "SamAccountName -eq 'PowerShellGuy'" -properties memberof | % memberof | Get-ADgroup

If you want custom formatting, you can build a custom psobject, or a custom class. I prefer the class method

Class CustomAdInfo 
{
    $UserName
    $Email
    $Group
}

If you want one group per, then you can do something like this

Class CustomAdInfo 
{
    $UserName
    $Email
    $Group
}

$listOfUsers = @("foo","bar")

$customObjects = 
    foreach($user in $listOfUsers)
    {
        $adUserObj = Get-ADUser -Filter "SamAccountName -eq '$user'" -properties memberof, emailaddress
        $groups = $adUserObj.MemberOf | Get-ADgroup
        foreach($group in $groups)
        {
            New-Object -TypeName CustomAdInfo -Property @{
                UserName = $adUserObj.SamAccountName
                Email = $adUserObj.EmailAddress
                Group = $group
            }
        }
    }

get all groups of user with other user object properties

Answers (2)

Related Questions