Active Directory

AD Computer Management

Find all attributes of Computer object. Computer object belongs to “Computer” object class. Get-ADComputer “HR-WKS1” -Properties * Change Default OU Location for creation for Computer Accounts. By default all computer objects gets created in “Computers” container which can be changed by using “redircmp” command. redircmp “OU=Workstations,DC=labs,DC=local” When above command was entered it gave below error indicating that Domain Functional level should be at least WS2003 but in … Continue reading AD Computer Management

pkhaire22
Active Directory

AD Group Management

Find all attributes of Group object. Group object belongs to “Group” object class. Get-ADGroup -Identity “HR-Users” –Properties * Create Group at specific OU location. New-ADGroup -Name “Engineers” -SamAccountName “Engineers” -GroupCategory Security -GroupScope Global -DisplayName “Engineers” -Path “OU=Exchange-Groups,DC=labs,DC=local” -Description “All Engineers” Find all the direct members of Group. Legacy command – dsget group “CN=Domain Admins,CN=Users,DC=labs,DC=local” -members –expand Get-ADGroupMember -Identity “Domain Admins” -server labs.local | Select Name, … Continue reading AD Group Management

pkhaire22
Active Directory

AD User Management

We will discuss all about “user” object class in this blog post. My lab consists of Windows Server 2012 R2 forest which is on “WS2012 R2” forest functional level (FFL) and “WS2012 R2” domain functional level (DFL). DNS Domain name of my test root forest is – labs.local. Domain Controller name – DC1.labs.local Find all attributes of User object. User object belongs to “User” object class. … Continue reading AD User Management

pkhaire22