asked on

Active Directory Powershell

Hello All,

I ran the following Powershell command get-aduser -identity username -properties * to find why a password was not being reset by our local password reset page and i found that those fields as well as several others were not populated. Is there something that i have to turn on/configure to get it to start logging that information? I know that it was atleast reset once through active directory through me so i know that some information should be there for it.

The "important" feilds that are there are:

account lockouttime
last logondate
lastbadpasswordattempt

and may more.

Thanks,
Brad

pjam

Brad,
Do you have RSAT installed? You need that to get AD commands.
I have a profile in My Documents\WindowsPowershell\Profile.ps1 that has:
Import-Module ActiveDirectory, so that when I open PowerShell it automatically brings in AD.

Bradley Bishop

ASKER

No we do not have RSAT installed. i did the import that you suggested and it did not change any of the outputs.

Member_2_6492660_1

What version of Powershell you running?

run this $PSVersionTable

As PJAM said above must have RSAT installed on your windows 7 box

I created a shortcut for this

%windir%\system32\WindowsPowerShell\v1.0\powershell.exe -noexit -command import-module ActiveDirectoy

Bradley Bishop

ASKER

sorry i should have been more clear, i am running this from the server itself

ASKER CERTIFIED SOLUTION

Member_2_6492660_1

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

pjam

By server itself, hopefully you mean Domain controller.

SOLUTION