Hi,
I'm building a script to automate audit's. One part is to list users in groups which works fine in my local domain:
PS C:\scripts> Get-ADGroupMember "Domain Admins" | Select-Object -Property Name,@{name="Description";expression={(Get-ADUser -Identity $_.SamAccountName -Properties Description).Description}}
Name Description
---- -----------
UK Operator Account used for Network Scheduled Tasks
SCCM 2012 ER: 70145
uklhsccm2012
uklecsccm2012
AGAdmin Admin account for Aljay De Guzman (USOffice) - ER:86190
SvcAccountz Domain Server Service Accounts
ESAdmin Admin Account for Eric Smith (USOffice) - ER: 40663
SQL Service Account Runs the SQL Agent and MSSQL Services
LDAdmin Admin Account for Lyle Davis (CANADA) - ER: 40663
LMAdmin Admin Account for Lionel Marechal (ER:47674)
Backup Services Backup Services Account (Veeam)
JPAdmin Admin Account for Julian Powell (ER:92870)
But when I try this on another domain I can't get the descriptions to be displayed:
PS C:\scripts> Get-ADGroupMember -Server usoffice.xxx.local -Credential usoffice\adminjp -Identity "CN=US-IS-Application-Support,OU=GlobalGroups,OU=Groups,DC=usoffice,DC=xxx,DC=local" | Select-Object -PropertyName,@{name="Description";expression={(Get-ADUser
-Identity $_.SamAccountName -Properties Description).Description}}
Name Description
---- -----------
Greta Deal
Pia Mason
Beth Haden
webappsvc
Tim Vatne
Prathima Anumolu
The command works on a machine that is within that domain but I can't figure out way I can't do this from my current domain. Spent far to long on this one :).
