Shell – Get only user OU from Active Directory Using Powershell/CLI

active-directorypowershell

I want to get only OU of specific user.

Example the command should display what OU user JOHN belongs to:

USERNAME = OU_NAME

Best Answer

If you don't have the AD-Module installed, you can also use this. I found this very useful when I ran scripts where I needed AD-Information, but didn't have the AD-Module installed. :

$strFilter = "(&(objectCategory=User)(samAccountName=$env:username))"
$objSearcher = New-Object System.DirectoryServices.DirectorySearcher
$objSearcher.Filter = $strFilter
$objPath = $objSearcher.FindOne()
$objUser = $objPath.GetDirectoryEntry()
$DN = $objUser.distinguishedName
$ADVal = [ADSI]"LDAP://$DN"
$WorkOU = $ADVal.Parent
$WorkOU

Now $WorkOU would return a string like this LDAP://OU=userou,OU=userou2,DC=internal,DC=domain,DC=com which you can filter any way you want.

Related Solutions

Powershell get a value from ‘query user’ and not the headers etc

Since "query user" is not an object you cannot use it as an object in powershell unless you contruct a custom PSObject, so

$IDValue = query user | Select-Object ID
will not work.

I would use something like this:

$users = query user ;
$IDs = @() ;

for ($i=1; $i -lt $users.Count;$i++) {
  # using regex to find the IDs
  $temp = [string]($users[$i] | Select-String -pattern "\s\d+\s").Matches ;
  $temp = $temp.Trim() ;
  $IDs += $temp ;
}

Windows – Get objectGUID and objectSid for Active Directory user

Is PowerShell an option? If so you can do something along the following.

Get-ADUser USERNAME -Properties * | Select SamaccountName,ObjectSid,ObjectGUID

Best Answer

Related Solutions

Powershell get a value from ‘query user’ and not the headers etc

Windows – Get objectGUID and objectSid for Active Directory user

Related Question