Answer the question
In order to leave comments, you need to log in
M
M
MODifikaTOR2021-02-11 16:02:48
MODifikaTOR, 2021-02-11 16:02:48
How to exclude certain OUs by CanonicalName from a query?
I'm trying to build a query in AD that will give me usernames and their path (CN and CanonicalName) excluding accounts located in two OUs. However, Powershell gives me an error:
The code itself:
Get-ADUser -Filter "(CanonicalName -notlike '*off_user*') -or (CanonicalName -notlike '*service*')" -Properties CN,CanonicalName | Format-Table CN,CanonicalName -AutoSize 1 answer(s)
@MODifikaTOR18
R
Roman Bezrukov, 2021-02-11 @MODifikaTOR18
CanonicalName is a calculated attribute (constructed attribute), such attributes are not stored explicitly in AD, but are calculated on the fly when appropriate requests are received. Accordingly, they cannot be directly used in filters and queries.
Your request should look something like this:
Get-ADUser -Filter "(saMAccountName -notlike '*off_user*') -or (saMAccountName -notlike '*service*')" -Properties CN,CanonicalName | where{$_.distinguishedname -notmatch "exOU1|exOU2|exOU3"} | ft CN,CanonicalName -auto
Similar questions
V
M
Morrowind2020-10-31 15:12:28
Why is file information not displayed in the Get-ChildItem cmdlet?
1Reply
E
A
B
BoryanNikitin2020-11-11 14:49:53
Why Get-AppxPackage | Select-Object Name is empty string in loop?
1Reply
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question