Monday, 4 September 2017

How to get SID of all Domain Users using PowerShell

3:22 pm
Hey All,

Today we are going to cover an interesting topic to fetch SID of all domain users.


What is SID ?

SID (Security Identifier ) is an unique id or value assigned to each and every domain object. Each domain object whether its a Group, User account , Computer , OU is assigned with an unique id in order to get identified by a Domain controller. All these SID's are stored in a Security Database. It looks like S-1-5-32-545 etc.

NOTE :  Domain Controller identifies object with their SID and not with the name. In order to understand this concept, open any box which is in Domain and go to any Folder properties , in Security tab you will observe it will show SID something like S-1-5-32-545 and then it tries to convert it to name.

So Lets Begin

There are several ways to find the list of SSID's , I will be covering the easiest ones.

1. To get the list of all the domain users and their SSID

Get-WmiObject win32_account | Select FullName,Name,SID,Description | ft -autosize | Out-File D:\Data.txt






2. To get SSID for a particular domain

[wmi]"win32_userAccount.Domain='<DomainName>',Name='Username'"


There are many other methods, which can be found here : Click Here
Happie Learning!




About Us

3/recentcomments

Recent

Random