Using PowerShell to retrieve an object's SID from Active Directory (Network Steve Forum)

Using PowerShell to retrieve an object's SID from Active Directory

Summary This script retrieves the user-friendly string representation of an object's SID from Active Directory. #---------------------------------------------------------------------------------------------------------- set-variable -name URI -value "http://localhost:5725/resourcemanagementservice" -option constant set-variable -name DN -value "LDAP://CN=Britta Simon,OU=FIMObjects,DC=Fabrikam,DC=Com" -option constant #---------------------------------------------------------------------------------------------------------- If(@(get-pssnapin | where-object {$_.Name -eq "FIMAutomation"} ).count -eq 0) {add-pssnapin FIMAutomation} #---------------------------------------------------------------------------------------------------------- $AdUser = [ADSI]($DN) If($AdUser.objectGuid -eq $null) {Throw "Object not found in Active Directory"} $UserSid = New-Object System.Security.Principal.SecurityIdentifier($AdUser.objectSid[0], 0) $Nt4Name = $UserSid.Translate([System.Security.Principal.NTAccount]) $Nt4Domain = ($Nt4Name.Value.Split("\"))[0] $Nt4Account = ($Nt4Name.Value.Split("\"))[1] #---------------------------------------------------------------------------------------------------------- Clear-Host Write-Host "User Data" Write-Host "=========" $DataRecord = New-Object PSObject $DataRecord | Add-Member NoteProperty "DN" $DN $DataRecord | Add-Member NoteProperty "SamAccountName" ($Nt4Name.Value.Split("\"))[1] $DataRecord | Add-Member NoteProperty "Domain" ($Nt4Name.Value.Split("\"))[0] $DataRecord | Add-Member NoteProperty "SID" $($UserSid.ToString()) $DataRecord | Format-List #---------------------------------------------------------------------------------------------------------- Trap { Write-Host "`nError: $($_.Exception.Message)`n" -foregroundcolor white -backgroundcolor darkred Exit 1 } #---------------------------------------------------------------------------------------------------------- Go to the FIM ScriptBox Markus Vilcinskas, Knowledge Engineer, Microsoft Corporation

June 4th, 2010 4:59pm

This topic is archived. No further replies will be accepted.