Solved

Get-ADUserResultantPasswordPolicy - Seems to run but returns no results and no errors

Posted on 2016-08-30
4
38 Views
Last Modified: 2016-09-18
Im running whilst logged in as a domain admin. Any ideas?

Windows Server 2012
Active Directory
0
Comment
Question by:Dallas Smetter
  • 2
4 Comments
 
LVL 5

Expert Comment

by:TechieMD
ID: 41776655
Is your domain functional level less than DS_BEHAVIOR_WIN2008? This may be the case. Other reasons for no return values can be found here.
0
 

Author Comment

by:Dallas Smetter
ID: 41776657
Both forest and domain are at 2008 R2
0
 
LVL 38

Accepted Solution

by:
Adam Brown earned 500 total points (awarded by participants)
ID: 41777082
Get-ADUserResultantPasswordPolicy  will return nothing if there is no Password Settings Object that applies to the user you run the cmdlet against. It will basically just query the msds-ResultantPSO attribute for any user you pass to the cmdlet and read the password settings for the referenced PSO. If no PSO is assigned to the user, this attribute doesn't exist for the user and can't be read, so the cmdlet returns nothing.
0
 
LVL 38

Expert Comment

by:Adam Brown
ID: 41803582
No response from user, but this is the most likely cause of the problem
0

Join & Write a Comment

The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
Is your Office 365 signature not working the way you want it to? Are signature updates taking up too much of your time? Let's run through the most common problems that an IT administrator can encounter when dealing with Office 365 email signatures.
This tutorial will walk an individual through the process of configuring basic necessities in order to use the 2010 version of Data Protection Manager. These include storage, agents, and protection jobs. Launch Data Protection Manager from the deskt…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now