【发布时间】:2015-03-10 03:03:04
【问题描述】:
我正在编写一个脚本,用于搜索具有特定属性组合的 AD 用户,然后将其删除。当我对“-Server”参数使用“company.local”时,整个脚本都可以工作。当我选择 2008R2 DC 时,我没有删除对象,而是收到以下错误:
Remove-ADUser : A referral was returned from the server At line:1 char:1
+ Remove-ADUser $user
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + CategoryInfo : ResourceUnavailable: (CN=John Doe...mpany,DC=local:ADUser) [Remove-ADUser], ADRefer ralException + FullyQualifiedErrorId : ActiveDirectoryServer:8235,Microsoft.ActiveDirectory.Management.Commands.RemoveADUser
什么给了?谢谢。
以下是相关代码: 获得 DC:
Function Get-DomainControllerName {
Param (
[Parameter(Mandatory=$True)]
$DNSDomainName
)
$domainControllers = Get-ADDomainController -Filter * -Server $DNSDomainName
Foreach ($domainController in $domainControllers) {
If ($domainController.OperatingSystem -like '*2003*') {
Write-Warning ("Skipping {0}, because it is not Server 2008 (or higher)." -f $domainController.HostName)
}
Else {
$dc = $domainController.HostName
}
}
Write-Output ("Using {0} to connect to Active Directory." -f $dc) | Out-File -FilePath $outputPath\$OutputFileName -Append
Return $dc
}
获取用户:
$allDisabledUsers = Get-ADUser -Filter * -Properties ExtensionAttribute4,msExchUserAccountControl -Server $dc
删除用户:
Foreach ($user in $allDisabledUsers) {
Remove-ADObject $user -Server $dc
}
【问题讨论】:
标签: powershell active-directory