PowerTip: Identify All Properties for Active Directory User

Summary: Use the –Properties parameter to find all properties attached to an Active Directory user.

Hey, Scripting Guy! Question How can I use Windows PowerShell rather than digging through the ADSI editor to find
           the available properties for a user in our Active Directory?

Hey, Scripting Guy! Answer Leverage the –Properties parameter on a single user to see all available property names:

GET-Aduser Jubal.Harshaw –properties * | Get-Member

Comments (5)

  1. TJ says:

    Will this display properties that are not being used? I extrapolated a little and tried this command with get-adcomputer. It doesn’t display netbootGUID unless the property is populated with data.

  2. Mikw says:

    To filter out methods and show only LDAP attributes, you could replace Get-Member by:
    Get-Member -MemberType Property

  3. mike ervin says:

    So i pasted this into power shell and got the below error so your eaxample does not work and or is not self explainatory

    PS S:> GET-Aduser michael.j.ervin.civ –properties * | Get-Member
    GET-Aduser : The term ‘GET-Aduser’ is not recognized as the name of a cmdlet, function, script file, or operable program. Check the spelling of the

    name, or if a path was included, verify that the path is correct and try again.
    At line:1 char:1
    + GET-Aduser michael.j.ervin.civ –properties * | Get-Member
    + ~~~~~~~~~~
    + CategoryInfo : ObjectNotFound: (GET-Aduser:String) [], CommandNotFoundException
    + FullyQualifiedErrorId : CommandNotFoundException

  4. NaveenS says:

    Many thanks!

    Mike Ervin, I guess your not having Active Directory from the machine which you ran this command

Skip to main content