cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

add computers to security group automatically

Surfer10
Copper Contributor

‎Jan 20 2021 11:57 PM

‎Jan 20 2021 11:57 PM

add computers to security group automatically

I would like to add computers in AD with names that start with desktop to a security group: testgroup.

We would like to run this powershell command thru scheduled tasks to run every week so that if someone forgets to add the computer to the security group it will be done. Every computer with name desktop must be aded to that group.

 

I have the following:

Get-ADComputer -Filter 'Name -like "desktop*"' -properties displayname | add-adgroupmember -identity "testgroup"

 

When i run this it asks for a members(0)

 

How can we accomplish this?

 

 

 

 

I would like to first test it with desktop1 in stead of *.

9,124 Views
0 Likes
12 Replies
Reply
12 Replies
farismalaeb

‎Jan 21 2021 03:30 AM

‎Jan 21 2021 03:30 AM

Re: add computers to security group automatically

@Surfer10 

Use the following

(Get-ADComputer -Filter 'Name -like "Desktop*"' -properties displayname).foreach{add-adgroupmember -identity "MyADGROUP" -Members $_.SamAccountName}

 

Please remember that computer object should have at their end $, otherwise it will be considered as ad user account.

 

 

--------------

If you find this answer helpfull , Click on best response and give like

 

0 Likes
Reply
Surfer10

‎Jan 21 2021 04:14 AM

‎Jan 21 2021 04:14 AM

Re: add computers to security group automatically

@farismalaeb 

 

Hi, this is what i get:

 

 

Method invocation failed because [Microsoft.ActiveDirectory.Management.ADComputer] does not contain a method named 'foreac
h'.
At line:1 char:1
+ (Get-ADComputer -Filter 'Name -like "desktop1*"' -properties displayname ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : InvalidOperation: (foreach:String) [], RuntimeException
+ FullyQualifiedErrorId : MethodNotFound

 

 

Must there be a $ at desktop1$

0 Likes
Reply
Surfer10

‎Jan 21 2021 05:16 AM

‎Jan 21 2021 05:16 AM

Re: add computers to security group automatically

@Surfer10 

When i put $ ehind the computername the error does not appear but it does also not adding the computer to the security group, just tested with "desktop1$"

0 Likes
Reply
Surfer10

‎Jan 21 2021 05:21 AM

‎Jan 21 2021 05:21 AM

Re: add computers to security group automatically

When i do this:

Get-ADComputer -Filter 'Name -like "desktop1"' -properties displayname

 

The properties of the computer appears so thats okay.

 

 

@Surfer10 

0 Likes
Reply
farismalaeb

‎Jan 21 2021 05:27 AM

‎Jan 21 2021 05:27 AM

Re: add computers to security group automatically

@Surfer10 

it seems that you are using an old version of Powershell 

Try this

$AllPC=Get-ADComputer -Filter 'Name -like "Desktop*"' -properties displayname

foreach($SinglePC in $AllPC){
add-adgroupmember -identity "MyADGROUP" -Members $SinglePC.SamAccountName
}
0 Likes
Reply
Surfer10

‎Jan 21 2021 05:39 AM

‎Jan 21 2021 05:39 AM

Re: add computers to security group automatically

@farismalaeb 

 

I think it is version on a WIndows Server 2012 en the version on my WIndows 10 client is 5 i believe, which comes standard with Windows 10.

 

On both Powershell versions the last is also not working, it gives no error but it does nothing, i hope you have some more suggetions:

 

$AllPC=Get-ADComputer -Filter 'Name -like "desktop1"' -properties displayname

foreach($SinglePC in $AllPC){
add-adgroupmember -identity "testgroup" -Members $SinglePC.SamAccountName
}

0 Likes
Reply
best response confirmed by Surfer10 (Copper Contributor)
farismalaeb

‎Jan 21 2021 05:52 AM

‎Jan 21 2021 05:52 AM

Solution

Re: add computers to security group automatically

@Surfer10 

did you add the * after the desktop1

try this small change

$AllPC=Get-ADComputer -Filter 'SamAccountName -like "desktop*"'
0 Likes
Reply
Surfer10

‎Jan 21 2021 06:28 AM

‎Jan 21 2021 06:28 AM

Re: add computers to security group automatically

Yes thank you now it works! @farismalaeb 

0 Likes
Reply
Surfer10

‎Jan 21 2021 09:31 AM

‎Jan 21 2021 09:31 AM

Re: add computers to security group automatically

Hi, do you know whcih version i need for the other commands to work is that powershell version 7?

 

 

0 Likes
Reply
Surfer10

‎Jan 21 2021 09:37 AM

‎Jan 21 2021 09:37 AM

Re: add computers to security group automatically

Now tht the script works is there also a way to exclude some names with DESKTOPNR?

 

I would like to run this command every week so that computers which are not a member of the testgroup will be added as member but there are 10 computers with the name dekstop111, desktop112,desktop250 and so 10 total.

 

Is it possible to exclude these, these 10 computers must be added to another group: prodgroup.

0 Likes
Reply
farismalaeb

‎Jan 21 2021 10:59 AM

‎Jan 21 2021 10:59 AM

Re: add computers to security group automatically

@Surfer10 

Its Powershell and everything is doable, but first, you need to think about it,

Logically what is the common thing between this computer object and build the filter based on that.

I would suggest updating a computer object attrib or custom attrib then exclude these object with these attrib from the query.

 

 

0 Likes
Reply
Giancarlo135

‎Oct 20 2022 09:29 AM

‎Oct 20 2022 09:29 AM

Re: add computers to security group automatically

ADD-ADGroupMember -identity “NAME OF YOUR GROUP” –members “$env:computername$”

Comments:
The "" can be taken literally
“$env:computername$” = this is a variable that will add the Computer that the script is running on to your specified Group
0 Likes
Reply