Good morning, I have recently built a tool which removes domain users from the local administrators group using a text file for input of the machine name and user name. Yesterday, I was asked to remove a dead account that only shows up as a SID in the local administrators group of ~1400 machines. I tried using my program with a couple of minor modifications (my current tool uses SCCM to run net localgroups .... /delete, but I noticed none of the 15 test machines I used to create my initial collection had the account removed.
Some caveats, I can not use PSExec, it's frowned upon in our network environment.
My VB and powershell skills are minimal (we use wise scripting for almost everything).
Please help
Thanks, Rick