<div>
<div class="content wysiwyg-content">
We're trying to figure out how to know what local groups an AD account has access to on a specific computer, but the only commands I can seem to find deal with group membership when it comes to AD groups, but not local groups.<br />
<br />
Does anyone know of a command, whether through the command prompt, or Powershell, that can return the list of which local groups an AD user is a part of??<br />
<br />
I'm sure it's something easy that's eluding me - any help is appreciated!!
</div>
</div>


We're trying to figure out how to know what local groups an AD account has access to on a specific computer, but the only commands I can seem to find deal with group membership when it comes to AD groups, but not local groups.

Does anyone know of a command, whether through the command prompt, or Powershell, that can return the list of which local groups an AD user is a part of??

I'm sure it's something easy that's eluding me - any help is appreciated!!

Local Group Membership for AD accounts

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Windows Server 2008 and Windows Server 2008 R2, based on the Microsoft Vista codebase, is the last 32-bit server operating system released by Microsoft. It has a number of versions, including including Foundation, Standard, Enterprise, Datacenter, Web, HPC Server, Itanium and Storage; new features included server core installation and Hyper-V.