Jump to content
Posted 21 August 2017 - 02:52 AM
Posted 25 August 2017 - 01:27 PM
You can check the security group membership in Active Directory Users and Computers, you can also see if there are any Group policies being applied in the Group policy management console.
Posted 28 August 2017 - 04:15 AM
In Active Directory I can check only who is in group. I need to check where my group are use. On which server are implemented.
Posted 29 August 2017 - 08:10 AM
Any server or computer that is joined to the domain can potentially use an AD security group. For group policy, check the GP management console.
It sounds like you are trying to determine if groups were used to configure NTFS permissions on folders and shares. That's harder to determine -- you would need to check each server/client for the folder access permissions on each. If you're good with PowerShell, here's a link to a script that will go through all your servers/clients and check for groups and their NTFS permissions: https://blogs.technet.microsoft.com/ashleymcglone/2014/03/17/powershell-to-find-where-your-active-directory-groups-are-used-on-file-shares/
Posted 29 August 2017 - 04:44 PM
Personally i would use WMIC.
As the domain admin, open a dos prompt and then run the command below
wmic useraccount where disabled="true" get /all /format:list >> C:\DisabledUsers.txt
0 members, 0 guests, 0 anonymous users