(imported topic written by tharryman91)
I am trying to get certain properties (names of it, logon count of it, password ages of it, last logons of it) of all of the members of the local group Administrators. Some of the computers queried are domain members, but most are not.
I read over the posting
here
about how to get the properties of local users. The same Q on my domain machine does not produce the same A that he is getting, however. Noah got this:
q: properties whose (it as string contains “local user”)
A: domain user : local user
A: domain users: local user
A: local user : local user
A: local users: local user
A: name of : string
A: password age of : time interval
A: guest privilege of : boolean
A: user privilege of : boolean
A: admin privilege of : boolean
A: home directory of : string
A: comment of : string
A: script flag of : boolean
A: account disabled flag of : boolean
A: home directory required flag of : boolean
A: no password required flag of : boolean
A: password change disabled flag of : boolean
A: locked out flag of : boolean
A: password expiration disabled flag of : boolean
A: normal account flag of : boolean
A: temporary duplicate account flag of : boolean
A: workstation trust account flag of : boolean
A: server trust account flag of : boolean
A: interdomain trust account flag of : boolean
A: logon script of : string
A: print operator flag of : boolean
A: communications operator flag of : boolean
A: server operator flag of : boolean
A: accounts operator flag of : boolean
A: full name of : string
A: user comment of : string
A: application parameter string of : string
A: allowed workstations string of : string
A: last logon of : time
A: last logoff of : time
A: account expiration of : time
A: maximum storage of : integer
A: bad password count of : integer
A: logon count of : integer
A: logon server of : string
A: country code of : integer
A: code page of : integer
A: user id of : integer
A: primary group id of : integer
A: profile folder of : string
A: home directory drive of : string
A: password expired of : boolean
I get this:
Q: properties whose (it as string contains “local user”)
A: local user of : active directory local user
A: logged on user of : active directory local user
A: local users of : active directory local user
A: logged on users of : active directory local user
A: name of : string
A: distinguished name of : string
A: distinguished name error message of : string
A: groups error message of : string
A: sample time of : time
A: group of : active directory group
A: groups of : active directory group
A: local user : user
A: local users: user
A: active directory user of : active directory local user
Regardless, the help from his post works great to get the properties I am looking for from the local user accounts:
Q: (names of it, logon count of it, password ages of it, last logons of it) of local users
This works great to get the members (local and domain) of the local group administrators:
Q: members of local group
"Administrators"
However, when I try to concatenate the two , I get bruises from banging my head on the desk; I am unable to query any information about domain users in the local group “Administrators”
Any assistance would be much appreciated!
Timothy