Pau Lo
asked on
fine grained password policy to users merge
is there any clever way within PowerShell to report for each fine grained password policy set in a domain, which user accounts are subject to it? Or if not within PowerShell, an alternative method to get a friendly user report of policy to users.
ASKER
Just really the SamAccountName and CN for users subject to each FGPP. I will take a look at the standard output of the command you provided.
ASKER CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
EXPERT CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
ASKER
that works perfectly, and yes the the policies were assigned to groups not directly to user accounts.
For details about the AppliesTo, you can use Get-ADFineGrainedPasswordP
So what do you understand under "friendly user report"? Do you just want the FGPP name and associated objects, or details about the respective FGPP as well? Do you want the objects as a list in a single cell, or a separate row for each object to which a FGPP applies?
In other words: which properties of the results you get from the commands above do you need in the report?