Im trying to grab a AD listing, with the enabled/disabled status for all AD users (with some minor excpetions)
in 4.000 users more than 140 shows the Enabled/Disabled status as NULL
The powershell command, and even targeting a diferent DC, the result is the same
Get-ADUser -server srv-dtc-018 -Filter 'samaccountname -ne "administrator" -and samaccountname -ne "krbtgt" -and samaccountname -like "*" -and samaccountname -notlike "svc-*" -and samaccountname -notlike "*-adm"' -properties samaccountname,enabled,name | ft samaccountname,enabled,name -A
The other Get-ADUSer command, but using Select-Object, shows the same problem:
Get-ADUser -server srv-dtc-018 -Filter 'samaccountname -ne "administrator" -and samaccountname -ne "krbtgt" -and samaccountname -like "*" -and samaccountname -notlike "svc-*" -and samaccountname -notlike "*-adm"' -properties samaccountname,enabled | Select-Object -Property samaccountname,enabled
I noticed that most of the NULL users are DISABLED users, but the Get-ADuser cant detecte the user was disabled?
EXAMPLE OF THE OUTPUT:
samaccountname | enabled |
lcaldas | False |
aaheleno | |
ABARBOZA | |
acaraujo | |
ACOMERIO | |
acronis | |
ALARIBEIRO | |
fcarneiro | False |
shipolito | True |
acgois | True |
voliveira | True |
...
...
- Edited by KayZerSoze 16 hours 57 minutes ago typo error