堆栈内存溢出
  简体   繁体   English

将用户添加到多个安全组

[英]Adding User to Multiple Security Groups

 原文  2016-11-14 19:39:56       powershell/ active-directory

问题描述

I've been able to add a user to one group using the below code. 我已经可以使用以下代码将用户添加到一个组中。 

Get-Aduser -filter 'company -eq "1480"' | %{Add-ADGroupMember "HS Students" $_.SamAccountName}

I want to add the user to multiple groups though. 我想将用户添加到多个组。 HS and HS Students. 高中和高中学生。

Any help would be appreciated. 任何帮助,将不胜感激。

EDIT 1 编辑1

so adding to the bottom of my create user script gives me the messages that the user is already part of the groups I'm trying to add to. 因此,添加到我的创建用户脚本的底部会为我提供该用户已经属于要添加到的组的消息。 Any reason why that is happening. 发生这种情况的任何原因。 

   foreach ($User in $ADUsers)
   {
   #Read user data from each field in each row and assign the data to a  variable as below

$Username   = $User.ID
$Password   = $User.BDATE
$Firstname  = $User.FNAME
$Lastname   = $User.LNAME
$Department = $User.GRD
$Company    = $User.SCHID #This field refers to the OU the user account is to be moved to

# Choose OU
Switch ($Company)
{
    "1480" {$OU = 'OU=students,OU=users,ou=hs,dc=clasd,dc=net'}
    "1479" {$OU = 'OU=students,OU=users,ou=elem,dc=clasd,dc=net'}
}

#Check to see if the user already exists in AD
if (Get-ADUser -F {SamAccountName -eq $Username})
{
     #If user does exist, give a warning
     Write-Warning "A user account with username $Username already exist in Active Directory."
}
else
{
    #User does not exist then proceed to create the new user account
    "Processing started (on " + $date + "): " | Out-File $log -append
    "--------------------------------------------" | Out-File $log -append

    #Account will be created in the OU provided by the $OU variable read from the CSV file
    New-ADUser `
        -SamAccountName $Username `
        -UserPrincipalName "$Username@clasd.net" `
        -Name "$Firstname $Lastname" `
        -GivenName $Firstname `
        -Department "$Department" `
        -Company "$Company" `
        -EmailAddress "$Username@clasd.net" `
        -Surname $Lastname `
        -Enabled $True `
        -Scriptpath "login.vbs" `
        -DisplayName "$Firstname $Lastname" `
        -Path $OU `
        -AccountPassword (convertto-securestring $Password -AsPlainText -Force) `
        -ChangePasswordAtLogon $true

    #Start-Sleep 5

    # Add User to Groups
    Get-Aduser -filter 'company -eq "1480"' | % { Add-ADGroupMember "HS Students" $_.SamAccountName; Add-ADGroupMember "HS" $_.SamAccountName }

}

} }

1 个解决方案

解决方案1
 0 已采纳  2016-11-14 19:40:53

So you would need to add a ; 因此,您需要添加一个; after the first command. 在第一个命令之后。 

Get-Aduser -filter 'company -eq "1480"' | % 
{ Add-ADGroupMember "HS Students" $_.SamAccountName; Add-ADGroupMember "HS" $_.SamAccountName }

You could use that as a 1 liner, if you really want, its just looking nicer the way I formatted it. 您可以将其用作1衬板,如果真的需要的话,它看起来比我格式化它的方式还好。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 PowerShell:如何将 1 个用户添加到多个 Active Directory 安全组 - 具有写入权限的安全组的安全选项卡 - PowerShell: How to add 1 user to multiple Active Directory Security Groups - Security tab of the security group with write permission 将导入的用户添加到多个组 - Adding Imported users into multiple groups 将多个用户添加到AD中的组 - Adding multiple users to groups in AD Powershell - 如果不是多个组的成员,则将 OU 中的用户广告到安全组 - Powershell - Ad user from OU to Security groups if not members of several groups PowerShell脚本,用于返回多个安全组的成员 - PowerShell script to return members of multiple security groups 从多个组中导出用户 - Export user from multiple groups 使用ps1脚本向AD用户添加组 - Adding groups to AD user with a ps1 script PowerShell-将新用户添加到选择的AD组 - PowerShell - Adding New User to Selection of AD Groups 向用户添加多个代理地址 - Adding multiple proxyaddresses to a user 将OU路径中的多个安全组的成员导出到CSV - Exporting Members of Multiple Security Groups within an OU Path to a CSV
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM