Get-ADUserResultantPasswordPolicy - Seems to run but returns no results and no errors

Im running whilst logged in as a domain admin. Any ideas?

Windows Server 2012
Active Directory
Dallas SmetterSolution EngineerAsked:
Who is Participating?
Adam BrownConnect With a Mentor Sr Solutions ArchitectCommented:
Get-ADUserResultantPasswordPolicy  will return nothing if there is no Password Settings Object that applies to the user you run the cmdlet against. It will basically just query the msds-ResultantPSO attribute for any user you pass to the cmdlet and read the password settings for the referenced PSO. If no PSO is assigned to the user, this attribute doesn't exist for the user and can't be read, so the cmdlet returns nothing.
Is your domain functional level less than DS_BEHAVIOR_WIN2008? This may be the case. Other reasons for no return values can be found here.
Dallas SmetterSolution EngineerAuthor Commented:
Both forest and domain are at 2008 R2
Adam BrownSr Solutions ArchitectCommented:
No response from user, but this is the most likely cause of the problem
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.