How do I create a powershell script to pull active directory usernames, account they are a member of and lastlogondate?

Question

This is what I have so far but I'm having no luck. What do you all think?

Get-ADUser -LDAPFilter "(name=*)" -SearchScope Subtree `
  -SearchBase "OU=adminaccounts,OU=Managed Objects,DC=testdomain,DC=Com" ` |
  % {
    $user = $_
    $user | Get-ADPrincipalGroupMembership | 
    Select @{N="User";E={$user.sAMAccountName}},
           @{N="Group";E={$_.Name}},
           @{N="Last‌​Logon";E={[DateTime]::FromFileTime($user.LastLogon)}}
  } |
  Select User,Group,LastLogon |
  Export-Csv C:\temp\report.csv -nti

Answer 1

LastLogon is not among the properties that Get-ADUser returns by default, unlike Name and SamAccountName . You need to explicitly tell the cmdlet to include that property:

Get-ADUser -LDAPFilter "(name=*)" -SearchScope Subtree `
  -SearchBase "OU=adminaccounts,OU=Managed Objects,DC=testdomain,DC=Com" `
   | ...

Also replace $_.LastLogon with $user.LastLogon inside the first select statement, because the current object variable ( $_ ) in the nested pipeline has a different value than you expect (the principal group of the user):

... | select ...,@{N="Last‌​Logon";E={[DateTime]::FromFileTime()}}