Question : LDAP query

I've been tasked with auditing all servers, I need to find out who is in the "local" administrator group on each server. I need to be able to log this, report it, probably print out a copy.

I've got around 150 servers to look into, and I think I've been overcomplicating this in my head. I'm a novice at best with programming or scripting, but I can follow specific instructions :-) I do have access to powershell but no VB or any other scripting lang, that I'm aware.

One more time, to make my SOX overlords happy. I hope there is an easy way to query LDAP to look at the following.
1: INDIVIDUAL SERVER
2: THE LOCAL MACHINES ADMINISTRATORS GROUP
3: MEMBERS OF THE ADMINISTRATORS GROUP

I need to be able to pull this information out to a file that I can have to give to my SOX overlords.

Thanks for any assistance that anyone can lend.

Answer : LDAP query

Yep, that will be just fine :)

You'll have to hit return a few times at the end to kick it off (or it will leave you at a prompt like ">>"), and do be patient, it won't be fast.

I wouldn't be too surprised if it threw a few access errors as well (either for offline hosts, or access denied scenarios). But feel free to yell if it causes problems or you need it to do something else.

Chris

Random Solutions

Different netbios and DNS domain names in Active Directory

Steps to upgrade Windows 2000 server to Server 2003

what formulas to use on the following

Network access shared folders not accessible but can ping server

Domino 6.5 does not respond for some time then routes many messages and is then fine.

Wireless Question about a 3COM 8760 Access Point

How is spam being relayed through my server?

ldap Query on all users with a home directory

Using GRE Tunnel as leased line Backup

reply from wrong ip