Using the "net user" command in Windows XP to list all group memberships for a specific Active Directory user

Is it possible to list all group memberships for a certain AD user?
I thought it was something like:

net user londondom\john

But this doesn't seem to work for AD users. The same command will work for local users though:

net user johnlocal

Any ideas?

2 Answers

Try the following. I think it only works on the currently logged-in domain:

net user john /domain

1

Write all direct groups for the account

dsquery user -samid loginname | dsget user -memberof >> groups.txt

List all group for the login account, additionally show nested groups(recursive)

dsquery user -samid loginname | dsget user -memberof -expand 

1

Your Answer

Sign up or log in

Sign up using Google Sign up using Facebook Sign up using Email and Password Submit

Post as a guest

Post Your Answer Discard

By clicking “Post Your Answer”, you agree to our terms of service, privacy policy and cookie policy