Solved

Quest cmdlets get-qaduser profilepath strangeness

Posted on 2010-08-31
7
1,436 Views
Last Modified: 2012-06-22
I am having a weird problem with something that I thought would be quite easy. I am looking to get all of my users who have a specific profile path specifiec in there terminal services tab in AD.  See a sample use below.

Now i thought this would be a simple as doing
get-qaduser -profilepath \\server\share

However this does not work. I have tried many combinations of using quotes " hyphens ' etc with no luck. The even stranger thing is if i do a global wildcard search * it only returns 3 results. I know alot more people have this set.

Any ideas?
1.jpg
0
Comment
Question by:Joseph Daly
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 57

Accepted Solution

by:
Mike Kline earned 400 total points
ID: 33569195
It is a limit of how that value is stored.  See this question that I helped with (along with Chris Dent)
http://www.experts-exchange.com/Software/Server_Software/File_Servers/Active_Directory/Q_26278805.html
 
Thanks
Mike
0
 
LVL 35

Author Comment

by:Joseph Daly
ID: 33569254
Ahhh crappy. I knew about the ADmodify being able to change the values. I was actually planning on using that but was hoping I would be able to come up with an ldap query to filter down the people I am changing.

We have users who have our old TS servers set for these as well as users who have our new ones in different offices. Kind of makes a blankey change not possible, If possible I would have liked to only select and modify them. Im surprised LDAP/powershell doesnt have a method for handling these.
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 33569312
give Chris (or others) a chance; maybe there is a way to filter in powershell that I'm not aware of.
0
Edgartown IT Case Study

Learn about Edgartown's quest to ensure the safety and security of the entire town's employee and citizen data. Read the case study!

 
LVL 35

Author Comment

by:Joseph Daly
ID: 33569473
Hopefully someone has some ideas otherwise the points are yours. It just stinks because we have two regional offices with their own TS settings and I just thought of this now but the two companies we migrated into our AD also have their own TS settings.

I would love to be able to do a find where servername is a specificname and only replace that. Make things a whole lot easier and less chance of causing issues elsewhere.
0
 
LVL 13

Expert Comment

by:soostibi
ID: 33570947
Unfortunately these parameters are in a binary blob in the 'userparameters' LDAP attribute of the user. Quest quys did not implement a searcher parameter for Get-QADUser for these, inspite of the fact, that you can see these TS parameters as 'normal' parameters in the output of Get-QADUser.

As far as I know you can only search on these attributes on the client side, that means you have to grab all users into PowerShell and PowerShell will select the relevant users for you. (see attached code) That is not very efficient and uses a lot of resources if you have several users.

If these were 'normal' attributes, you could use this form:

Get-QADUser -SearchAttributes @{tsprofilepath = '\\server\share'}

But in this case it does not work.
Get-QADUser | ?{$_.tsprofilepath -eq "\\server\share"}

Open in new window

0
 
LVL 71

Assisted Solution

by:Chris Dent
Chris Dent earned 100 total points
ID: 33574978

It's quite a problem. You can use LDAP filters to search for binary data, however, it doesn't let you use wildcards so it's really not very useful unfortunately.

Chris
0
 
LVL 35

Author Closing Comment

by:Joseph Daly
ID: 33620442
Thanks guys
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Windows 10 came with  a lot of built in applications, Some organisations leave them there, some will control them using GPO's. This Article is useful for those who do not want to have any applications in their image (example:me).
A recent project that involved parsing Tableau Desktop and Server log files to extract reusable user queries for use in other systems. I chose to use PowerShell to gather the data, and SharePoint to present it...
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question