AD Powershell

Question 1

Get-ADGroupMember

Answer 1

Gets the members of a specific AD Group

Question 2

Get-ADObject

Answer 2

Gets one or more AD objects depending on a search base or criteria

Question 3

Get-ADUser

Answer 3

Gets one or more AD users. Can be used to get all users or users whose SAMID contains certain words.

Question 4

Move-ADObject

Answer 4

Moves an Active Directory object or a container of objects to a different container or domain.

Question 5

New-ADObject

Answer 5

Creates an Active Directory object.

Question 6

New-ADComputer

Answer 6

Creates a new AD computer. Does not join a computer to the domain

Question 7

Set-ADAccountControl

Answer 7

Modifies user account control (UAC) values for an Active Directory account. Such as CannotChangePassword and PasswordNeverExpires

Question 8

Set-ADDomain

Answer 8

Used to modify attributes of an AD Domain such as ManagedBy attribute or allowed DNSSuffixes

Question 9

Set-ADForest

Answer 9

Used to modify attributes of an AD Forest such as UPN or SPN suffixes

Question 10

Set-ADForestMode

Answer 10

Sets the forest functional level

Question 11

Set-ADDomainMode

Answer 11

Sets the domain functional level

Question 12

Add-ADPrincipalGroupMembership

Answer 12

The Add-ADPrincipalGroupMembership cmdlet adds a user, group, service account, or computer as a new member to one or more Active Directory groups.

Question 13

Get-ADPrincipalGroupMembership

Answer 13

Gets the Active Directory groups that have a specified user, computer, group, or service account.

Question 14

Set-ADOrganizationalUnit

Answer 14

The Set-ADOrganizationalUnit cmdlet modifies the properties of an Active Directory organizational unit. Can be used to change the managedby attribute.

Question 15

Get-ADGroupMember

Answer 15

Gets all the members of a group