Categories
Welcome Center
Education & Development
Discussions
Certification Preparation
Recent Posts
Groups
Free Resources
Ebooks
Free Workshops
Trending Certifications Infographic
Infosec Training
IT & Security Training
Live Boot Camps
Security Awareness Training
About Infosec Institute
Home
Discussions
Off Topic
Question for all you Windowsa scripting guru's
qwertyiop
We have the need to findout which users ion my domain have local admin rights to their machines. Is there a program that I can run on the domain to see this?
FYI im on a 2003 domain.
Find more posts tagged with
Save $250 on 2025 certification boot camps from Infosec!
Book now with code EOY2025
Button
Comments
Silver Bullet
I believe that it would be quite complicated to test for Local Administrator group membership because of group nesting.
I believe the simplest approach would be to create a simple login script that attempts to create a text file in a directory that only someone with local administrator permissions would be able to create files in. Then run an if exist to see if the write was successful. If so, echo the username and computer name to some file out on a network share using >> to give you a single file listing.
luckybob
[script]
$domain = "domain" #insert domain name
$strComputer = "computer" #insert computer name (read from file)
$computer = [ADSI]("WinNT://" + $strComputer + ",computer")
$computer.name
$Group = $computer.psbase.children.find("administrators")
$Group.name
[/script]
this should do what you need, you can just modify it to read a list of computer in your domain. This will list the users in the local administrator groups on the individual machines.
Quick Links
All Categories
Recent Posts
Activity
Unanswered
Groups
Best Of
INFOSEC Boot Camps
$250
OFF
Use code
EOY2025
to receive $250 off your 2025 certification boot camp!
BROWSE BOOT CAMPS
