Discovering the Active Directory Searcher with PowerShell

There is nothing wrong using Get-ADUser but there may be situations where you do not have that toolset handy. One topic I still need to address is searching. In this blog post I’lll demonstrate you all of my commands are being run on a domain-joined Windows 10 desktop. It is under an account that has domain admin privileges. For simple searching, you should be able to use a normal user account. You may do this differently if you have messed around with default permissions.

First we need a searcher object:

$searcher = New-Object system.DirectoryServices.DirectorySearcher

You will end up with an object like this:

The key property is the filter. This tells the searcher what to find. Unfortunately, this is also the trickiest part because you need to use an LDAP query string. I will give you some examples to get started. Currently the filter, (Objectclass=*), will return every single object in Active Directory. You probably do not need this function.

Instead, let’s find my user account:

$searcher.filter = "samaccountname=jeff"

How do we use this? One step you can take is to use Get-Member. You can see the different methods that are available:

I went ahead and highlighted the relevant methods. The FindOne() method will execute the search. It will also stop after the first matching result is discovered. FindAll() will search the entire Active Directory for objects that match the filter. Since there should be only a single object with a samaccountname of Lexh, the former should be sufficient:

$searcher.filter = "samaccountname=lexh"
$me = $searcher.findone()

The Path property is the LDAP path to the object. The properties are a subset of the complete object:


You can verify that this is not the complete object by piping to Get-Member. You will see that $me is a System.DirectoryServices.SearchResult object. The tricky part is getting property values out of this collection.

Because Properties is already a hash table, you could use a quick code:

New-Object psobject -Property $me.Properties | select name,title,department

It looks not nice but it gets the job done. For something a bit neater, we need to resort to a little scripting:

$ | foreach -begin {
} -process {
$value = $me.Properties.item($_)
if ($value.count -eq 1) {
$value = $value[0]
} -end {
new-object psobject -property $h

If you know in advance what properties you want, you could take this approach:

$props = "Name","Title","Department","samaccountname","DistinguishedName","DirectReports"
$h = @{}
foreach ($p in $props) {
$value = $me.Properties.item($p)
if ($value.count -eq 1) {
$value = $value[0]

new-object psobject -property $h

You can probably tell that if you want to use the directory searcher, you will need to create some tooling around it.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s