<div>
Thanks for checking Will .. yeah GPO was not an option , too many variables .. it was just a quick temporary fix .
</div>


Thanks for checking Will .. yeah GPO was not an option , too many variables .. it was just a quick temporary fix .

<div>
<div class="content wysiwyg-content">
Hi EE<br />
<br />
I have the script below that someone here helped me with to nest a Domain group into the Administrators group into multiple machines .. Would it be as easy as changing &quot;.add&quot; to .remove ? I tried it and it worked but I don't want to run it on 100 servers without confirmation from the experts . <br />
<br />
$ErrorActionPreference = &quot;Stop&quot; <br />
GC Servers.txt | %{ <br />
$Serv = $_ <br />
$domain=&quot;MyDomain&quot; <br />
$group = &quot;GroupName&quot; <br />
&nbsp; &nbsp; &nbsp; &nbsp; Try { <br />
&nbsp; &nbsp; &nbsp; &nbsp; ([adsi]&quot;WinNT://$Serv/Admi<wbr />nistrators<wbr />,group&quot;).A<wbr />dd(&quot;WinNT:<wbr />//$domain/<wbr />$group,gro<wbr />up&quot;) <br />
&nbsp; &nbsp; &nbsp; &nbsp; &quot;&quot;&nbsp;| Select @{N=&quot;Server&quot;;e={$Serv}},@{<wbr />N=&quot;Status&quot;<wbr />;e={&quot;Succe<wbr />ss&quot;}} <br />
&nbsp; &nbsp; &nbsp; &nbsp; } <br />
&nbsp; &nbsp; &nbsp; &nbsp; Catch{ <br />
&nbsp; &nbsp; &nbsp; &nbsp; &quot;&quot;&nbsp;| Select @{N=&quot;Server&quot;;e={$Serv}},@{<wbr />N=&quot;Status&quot;<wbr />;e={&quot;Faile<wbr />d&quot;}} <br />
&nbsp; &nbsp; &nbsp; &nbsp; } <br />
}
</div>
</div>


Hi EE

I have the script below that someone here helped me with to nest a Domain group into the Administrators group into multiple machines .. Would it be as easy as changing ".add" to .remove ? I tried it and it worked but I don't want to run it on 100 servers without confirmation from the experts . 

$ErrorActionPreference = "Stop" 
GC Servers.txt | %{ 
$Serv = $_ 
$domain="MyDomain" 
$group = "GroupName" 
        Try { 
        ([adsi]"WinNT://$Serv/Administrators,group").Add("WinNT://$domain/$group,group") 
        "" | Select @{N="Server";e={$Serv}},@{N="Status";e={"Success"}} 
        } 
        Catch{ 
        "" | Select @{N="Server";e={$Serv}},@{N="Status";e={"Failed"}} 
        } 
}

Remove an AD group from multiple servers

Windows PowerShell is a task automation and configuration management framework from Microsoft, consisting of a command-line shell and associated scripting language built on the .NET Framework. PowerShell provides full access to the Component Object Model (COM) and Windows Management Instrumentation (WMI), enabling administrators to perform administrative tasks on both local and remote Windows systems as well as WS-Management and Common Information Model (CIM) enabling management of remote Linux systems and network devices.

Powershell

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Windows Server 2008 and Windows Server 2008 R2, based on the Microsoft Vista codebase, is the last 32-bit server operating system released by Microsoft. It has a number of versions, including including Foundation, Standard, Enterprise, Datacenter, Web, HPC Server, Itanium and Storage; new features included server core installation and Hyper-V.