PoshCode Archive  Artifact [1021a48ec3]

Artifact 1021a48ec3c4936067ce4e4d047a21d2292b8a89e9d01121c3c40be3a1adf2d7:

  • File get-localadministrators.ps1 — part of check-in [7cc2e15824] at 2018-06-10 13:46:58 on branch trunk — retrieves local administrators of a maschine using System.DirectoryServices.AccountManagement via Well-known security identifiers (user: Carsten Kr size: 3010)

# encoding: utf-8
# api: powershell
# title: 
# description: retrieves local administrators of a maschine using System.DirectoryServices.AccountManagement via Well-known security identifiers
# version: 0.1
# type: class
# author: Carsten Kr
# license: CC0
# function: get-localadministrators
# x-poshcode-id: 4859
# x-archived: 2014-04-09T12:03:03
#
#
<#
.NOTES
    Author: Carsten Krüger - cakruege+poshcode@gmail.com
#>

Add-Type @'
public class MyAccounts
{
    public System.Collections.ArrayList localusers; 
    public System.Collections.ArrayList domainusers;
    public System.Collections.ArrayList domaingroups;
}
'@   

function get-localadministrators {
    param ([string]$computername=$env:computername)

    $computername = $computername.toupper()
    
                Add-Type -AssemblyName System.DirectoryServices.AccountManagement
                $PrincipalContext = New-Object System.DirectoryServices.AccountManagement.PrincipalContext([System.DirectoryServices.AccountManagement.ContextType]::Machine, $computername)
                           
                $GroupPrincipal = New-Object System.DirectoryServices.AccountManagement.GroupPrincipal($PrincipalContext)
                $Searcher = New-Object System.DirectoryServices.AccountManagement.PrincipalSearcher
                $Searcher.QueryFilter = $GroupPrincipal
                $localadmins = $Searcher.FindAll() | where {$_.Sid -eq 'S-1-5-32-544'} # Administrators group
                                              
                $localusers = New-Object System.Collections.ArrayList
                $domainusers = New-Object System.Collections.ArrayList
                $domaingroups = New-Object System.Collections.ArrayList
                
                $objOutput= New-Object MyAccounts
                              
                foreach ($ladmin in $localadmins.Members)
                {
                  if ($ladmin.ContextType -eq 'Machine')
                  {
                   [void] $localusers.Add($ladmin.Context.Name+'\'+$ladmin.SamAccountName)
                  }                                 
                  if ($ladmin.ContextType -eq 'Domain')
                  {
                           
                    if ($ladmin.StructuralObjectClass -eq 'user') {
                      [void] $domainusers.Add($ladmin.Context.Name+'\'+$ladmin.SamAccountName)

                    }                  
                    if ($ladmin.StructuralObjectClass -eq 'group') {
                      [void] $domaingroups.Add($ladmin.Context.Name+'\'+$ladmin.SamAccountName)
                    }
                  }                                        
                }    
                
                $objOutput.localusers=$localusers
                $objOutput.domainusers=$domainusers
                $objOutput.domaingroups=$domaingroups
                
                    
    return $objoutput
}#end function