Home > OS >  Working with a list of AD 'displayNames' in Powershell. How to indicate which users were n
Working with a list of AD 'displayNames' in Powershell. How to indicate which users were n

Time:12-16

I have written enough PS code to go through a list of displayNames (e.g "John Smith", "Taylor Hanson" - all stored on seperate lines of a txt file) to spit back enough data into another text file that can be used for mailmerge etc. Convincing thousands of employees to simply update Windows is like breaking stones! It has to be automatted to some degree...

Here is the code... the functions that let the user open a specific text file and later save are out of view...

$displayname = @()
$names = get-content $FileIN
foreach ($name in $names) {


    $displaynamedetails = Get-ADUser -filter { DisplayName -eq $name } | Select Name, GivenName,  Surname, UserPrincipalName
    $displayname  = $displaynamedetails

}

$displayname | Export-Csv -NoTypeInformation -path $fileOUT -Encoding UTF8

From time to time, a name might be spelled incorrectly in the list, or the employee may have left the organisation.

Is there any way that a statement such as 'Not Found' can be written to the specific line of the text file if an error is ever made (so that an easy side-by-side comparison of the two files can be made?

For most of the other solutions I've tried to find, the answers are based around the samAccoutName or merging the first and last names together. Here, i am specifically interested in displaynames.

Thanks

CodePudding user response:

You can give this a try, since -Filter or -LDAPFilter don't throw any exception whenever an object couldn't be found (unless you're feeding a null value) you can add an if condition to check if the variable where the AD User object is going to be stored is not null and if it is you can add this "not found" user into a different array.

$domain = (Get-ADRootDSE).DefaultNamingContext
$names = Get-Content $FileIN
$refNotFound = [System.Collections.Generic.List[string]]::new()

$displaynamedetails = foreach($name in $names)
{
    if($aduser = Get-ADUser -LDAPFilter "(DisplayName=$name)")
    {
        $aduser
        continue
    }

    $refNotFound.Add(
        "Cannot find an object with DisplayName: '$name' under: $domain"
    )
}

$displaynamedetails | Select-Object Name, GivenName,  Surname, UserPrincipalName |
Export-Csv -NoTypeInformation -path $fileOUT -Encoding UTF8

$refNotFound # => Here are the users that couldn't be found

Side note, consider stop using $displayname = @() and = for well known reasons.
As for AD Cmdlets, using scriptblock based filtering (-Filter {...}) is not supported and even though it can work, it can also bring you problems in the future.

Page link:https//www.codepudding.com/os/229386.html

Prev:Detect Last Modified of a file when displaying in a list
Next:how to delete subfolder in ADLS gen2 via azure databricks
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding