본문 바로가기
Windows Server

Active Directory 그룹 관리

씨오디이abc 2023. 1. 30. 17:24
반응형

AD 그룹 추출
Get-ADGroup -filter 'name -like "*그룹명*"' -Properties description | Select-Object Name,GroupScope, description | Export-Csv -Encoding UTF8 -Path C:\ADGroup_list.csv
-Encoding UTF8 인자를 통해 한글로 Export 할 수 있다.

AD 그룹 생성
New-ADGroup -Name "그룹명" -SamAccountName ”그룹명” -GroupCategory Security -GroupScope Global -DisplayName "그룹명" -Path "DC=domain,DC=com" -Description "설명"

AD 그룹 구성원 추출
$OU = 'DC=domain,DC=com'
$adGroups = Get-ADGroup -Filter * -SearchBase $OU
$adGroupMembers = foreach ($Group in $adGroups) {
Get-ADGroupMember -Identity $Group -Recursive | Select-Object @{Name='Group';Expression={$Group.Name}}, @{Name='Member';Expression={$_.Name}}
}
$adGroupMembers | Export-Csv -Encoding UTF8 -Path C:\adGroupMembers.csv -NoTypeInformation

 

AD 그룹 구성원 추출 (단일 그룹에 대해)

$OU = 'DC=domain,DC=com'

$groupName = 'TEST'

$group = Get-ADGroup -Filter {Name -eq $groupName} -SearchBase $OU

 

if ($group) {

    $adGroupMembers = Get-ADGroupMember -Identity $group -Recursive | Select-Object @{Name='Group';Expression={$group.Name}}, @{Name='Member';Expression={$_.Name}}

    $adGroupMembers | Export-Csv -Encoding UTF8 -Path C:\adGroupMembers.csv -NoTypeInformation

} else {

    Write-Host "Group '$groupName' not found in the specified OU."

}


AD 그룹 구성원 추가
Add-ADGroupMember -Identity "그룹명" -Members "멤버계정"

AD 그룹 구성원 삭제
Remove-ADGroupMember -Identity "그룹명" -Members "멤버계정" -Confirm:false

AD 그룹 복사

$SourceGroupName = "TEST"

$DestinationGroupName = "TEST2"

 

$SourceGroup = Get-ADGroup -Identity $SourceGroupName

 

New-ADGroup -Name $DestinationGroupName -GroupCategory $SourceGroup.GroupCategory -GroupScope $SourceGroup.GroupScope -DisplayName $DestinationGroupName -Path $SourceGroup.DistinguishedName.Substring($SourceGroup.DistinguishedName.IndexOf(',') + 1)

 

$DestinationGroup = Get-ADGroup -Identity $DestinationGroupName

 

$SourceGroupMembers = Get-ADGroupMember -Identity $SourceGroup -Recursive

 

foreach ($Member in $SourceGroupMembers) {

    Add-ADGroupMember -Identity $DestinationGroup -Members $Member

}

반응형

'Windows Server' 카테고리의 다른 글

Update a user's photo in Active Directory (AD).  (0) 2023.02.09
How to Check Active Directory (AD) replication  (0) 2023.02.09
Active Directory 메일 속성 업데이트(Powershell)  (0) 2022.09.10
GPO를 활용해 Edge 브라우저를 기본 브라우저로 설정하기  (0) 2022.05.26
Windows Server 2019의 신규 기능  (0) 2020.04.23

'Windows Server' Related Articles

티스토리툴바