在 AD 中将组成员身份从一个用户复制到另一个用户 [英] Copy group membership from one user to another in AD

问题描述

我正在努力构建一个脚本，该脚本将在 AD 中将组成员身份从一个用户复制到另一个用户.我正在尝试使用 powershell 来自动执行此任务.但是我在为用户创建支票时卡住了.换句话说，当我将组成员身份从一个用户复制到另一个用户时，我希望能够在添加用户之前运行检查以查看该用户是否已经是该组的成员，但是这样做我可以避免诸如这个"之类的错误用户已经是该组的成员，无法再次添加"任何帮助或建议将不胜感激.我现在使用以下脚本编写脚本.

Im tyring to build a script which will copy group memberships from one user to another in AD. Im trying to use powershell to automate this task. However im stuck while creating a check for the user. In other words when i copy group membership from one user to another i want to be able to run a check to see if the user is already a member of the group before adding them, bu doing this i can avoid errors which such as " this user is already a member of the group and cannot be added again" Any help or advice would be appreciated. Im using the following to script at the moment.

$copy = Read-host "Enter user to copy from"
$Sam  = Read-host " Enter user to copy to"
 Function Copymembership {

$members = Get-ADUser -Identity $copyp -Properties memberof
foreach ($groups in $members.memberof){
if ($members -notcontains $groups.sAMAccountname)
{Add-ADGroupMember -Identity $groups -Member $sam -ErrorAction SilentlyContinue
Write-Output $groups} 
}
}
copymembership 

推荐答案

对两个用户都使用 Get-ADUser.然后使用 -notcontains 运算符来过滤组.

Use Get-ADUser for both users. Then use the -notcontains operator to filter groups.

$CopyFromUser = Get-ADUser JSmith -prop MemberOf
$CopyToUser = Get-ADUser MAdams -prop MemberOf
$CopyFromUser.MemberOf | Where{$CopyToUser.MemberOf -notcontains $_} |  Add-ADGroupMember -Member $CopyToUser

这篇关于在 AD 中将组成员身份从一个用户复制到另一个用户的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！