This script will fetch all the users in a AD group.<#.SYNOPSIS list all user of a AD group.DESCRIPTION list all user of a AD group.NOTES File Name : ListADGroup.ps1 Author : Udit Maheshwari Requires : PowerShell 1 #># Command line parameter[CmdletBinding()]Param
<# .SYNOPSIS list all user of a AD group .DESCRIPTION list all user of a AD group .NOTES File Name : ListADGroup.ps1 Author : Udit Maheshwari Requires : PowerShell 1 #>
# Command line parameter
[CmdletBinding()]
Param(
[Parameter(Mandatory=$true,Position=1)][alias(“-g”)][string]$groupname=””,
[Parameter(Mandatory=$false,Position=2)][alias(“-do”)][string]$domain=”yourDomain.com”
)
function fGetADGroupObjectFromName([System.String]$sGroupName,[System.String]$sLDAPSearchRoot){
$oADRoot = New-Object System.DirectoryServices.DirectoryEntry($sLDAPSearchRoot)
$sSearchStr =”(&(objectCategory=group)(name=”+$sGroupName+”))”
$oSearch=New-Object directoryservices.DirectorySearcher($oADRoot,$sSearchStr)
$oFindResult=$oSearch.FindAll()
if($oFindResult.Count -eq 1){
return($oFindResult)
}
else{return($false);}
}
$sSearchRoot=”LDAP://”+$domain+”:3268″
if($oSearchResult=fGetADGroupObjectFromName $groupname $sSearchRoot){
$oGroup=New-Object System.DirectoryServices.DirectoryEntry($oSearchResult.Path)
$oGroup.Member|%{
$oUser=New-Object System.DirectoryServices.DirectoryEntry($sSearchRoot+”/”+$_)
$oUser.Name
$oUser.sAMAccountname
$oUser.displayName
$oUser.displayName
$oUser.description
$oUser.Path
}
}
else{
write-warning (“Group “+$groupname+” not found at “+$domain)
}