Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- param
- (
- [string]$StrUser
- )
- #Get all recursive groups a user belongs.
- Function Get-ADUserNestedGroups
- {
- Param
- (
- [string]$DistinguishedName,
- [array]$Groups = @()
- )
- #Get the AD object, and get group membership.
- $ADObject = Get-ADObject -Filter "DistinguishedName -eq '$DistinguishedName'" -Properties memberOf, DistinguishedName;
- #If object exists.
- If($ADObject)
- {
- #Enummurate through each of the groups.
- Foreach($GroupDistinguishedName in $ADObject.memberOf)
- {
- #Get member of groups from the enummerated group.
- $CurrentGroup = Get-ADObject -Filter "DistinguishedName -eq '$GroupDistinguishedName'" -Properties memberOf, DistinguishedName;
- #Check if the group is already in the array.
- If(($Groups | Where-Object {$_.DistinguishedName -eq $GroupDistinguishedName}).Count -eq 0)
- {
- #Add group to array.
- $Groups += $CurrentGroup;
- #Get recursive groups.
- $Groups = Get-ADUserNestedGroups -DistinguishedName $GroupDistinguishedName -Groups $Groups;
- }
- }
- }
- #Return groups.
- Return $Groups;
- }
- #Get all groups.
- $Groups = Get-ADUserNestedGroups -DistinguishedName (Get-ADUser -Identity $StrUser).DistinguishedName;
- #Output all groups.
- $Groups | Select-Object Name | Sort-Object -Property Name;
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
