asked on
change owner on ad objects in powershell
I'm looking to do a massive change to a bunch of computers in AD. These computer objects need the owner change to a different user account. I am looking to use Set-ADComputer powershell command but I can't figure out what other options I need to use.
Thanks.
Thanks.
PowershellActive DirectoryWindows Server 2008
Last Comment
Qlemo
When you say owner what exactly do you mean? I do not see any attribute listed as owner in active directory.
ASKER
first you need to have advanced features turned on. Then select an object and go to properties, then security, advanced, then the owner tab. I can change them all this way however this will take way to long to do one by one, I need a massive change script.
Ok I see it now. That is actually the ACL of the object in active directory so you will not be able to change it using SET-ADCOMPUTER. To actually change that you would need to use a tool like DSACLS although Im not sure what the powershell equivalent is.
http://ss64.com/nt/dsacls.html
http://ss64.com/nt/dsacls.html
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.