A cluttered list of Active Directory computers can lead to security gaps and mismanagement. Without proper visibility, inactive and unauthorized computers may go unnoticed, which leaves your organization vulnerable to security risks . This guide provides granular methods to find computers in Active Directory and helps you maintain a well-organized and secure environment.
Import-Module -Name ActiveDirectory
Windows PowerShell Get-ADComputer -Filter * -Properties *|
Select-Object Name, Enabled, IPv4Address, OperatingSystemVersion, OperatingSystem, WhenCreated |
Export-Csv -Path "C:\ADComputersReport.csv" -NoTypeInformation 
Windows PowerShell Get-ADComputer -Filter * -Properties * |ft Windows PowerShell Get-ADComputer –Identity <SamAccountName> -Properties * 
AdminDroid’s Active Directory reporting tool provides detailed information about all workstations, servers, and domain controllers in your environment. With its advanced reporting features, you can easily pinpoint minor changes to computer objects in Active Directory.
Identify AD computers vulnerable to DCSync attacks and revoke unnecessary replication permissions to block potential exploits.
Find AD computers running on unsupported OS versions and upgrade to a higher supported version for improved security settings.
Spot deleted computers in Active Directory to detect any accidental deletions and restore them if needed.
Determine the source computer of account lockouts in Active Directory to identify any machines with outdated credentials that frequently cause lockouts.
View the SID history of AD computers and remove unnecessary entries to block resource access in the old domain.
Get a list of unused computers in Active Directory and delete them to avoid slowing down GPO and replication processing.
Overall, AdminDroid’s Active Directory management tool helps you find all computer objects in Active Directory and stay on top of AD management by:
This error occurs when fetching user logins from computers due to an unconfigured Windows Remote Management service for remote access or missing firewall rules.
winrm quickconfig//If remote management is enabled on the computer but the error persists, create a firewall rule to allow inbound WinRM traffic.New-NetFirewallRule -Name "Allow WinRM" -DisplayName "Allow WinRM" -Enabled True -Direction Inbound -Action Allow -Protocol TCP -LocalPort 5985
This error occurs when the Active Directory web services are not running on your domain controller.
This error occurs when you attempt to log in to a disabled computer.
Set-ADComputer -Identity "<ComputerName>" -Enabled $trueThis error occurs when the Active Directory module is not installed or loaded on your machine.
Import-Module -Name ActiveDirectory//If you’re running the cmdlet from a member server, you can run the cmdlet below to install the AD module and import it.Install-WindowsFeature RSAT-AD-PowerShell
You may not always need to list all computers in your domain. In some cases, you might need to manage only the computers within a specific organizational unit to focus on applying GPOs to similar computers within that OU.
The ADUC console is limited only to specific computer properties in Active Directory. To view various properties of computers, you can use PowerShell.
Run the PowerShell cmdlet below to find all computers within a specific organizational unit.
Get-ADComputer -Filter * -SearchBase "<OUDistinguishedName>" -Properties * |
Select-Object Name, Enabled, WhenCreated, @{Name='OUName';Expression={$_.CanonicalName -replace '^.?/(.?)/[^/]+$','$1'}}|
Format-TableIf you're unsure about the OU’s distinguished name, use the cmdlet below to retrieve it.
Get-ADOrganizationalUnit -Filter "Name -eq '<OUName>'" |
Select-Object DistinguishedName
However, the above PowerShell cmdlet gets the list of computers from both the specified OU and its sub-OUs. To get computers only in the parent OU, specify the SearchScope parameter as ‘OneLevel’.
Get-ADComputer -Filter * -SearchBase "<OUDistinguishedName>" -SearchScope OneLevel -Properties * |
Select-Object Name, Enabled, WhenCreated, @{Name='OUName';Expression={$_.CanonicalName -replace '^.?/(.?)/[^/]+$','$1'}}
| Format-Table
Inactive computers in AD, if left unnoticed, can create challenges in Active Directory management. Here are some potential issues:
To prevent these issues, it is important to identify and manage stale computers in your organization. You can use the PowerShell script below to get computers that have not logged in for the past 30 days.
Note: Replace 30 with any desired timeframe based on your requirements.
#Specify the inactive days based on your requirements
$InactiveDays = 30
#Determine the threshold date for comparison based on the inactive days
$time = (Get-Date).Adddays(-($InactiveDays))
#Cmdlet to get inactive computers whose last logon date is beyond the threshold date
Get-ADComputer -Filter {LastLogonTimeStamp -lt $time} -Properties *|
Select-Object Name, Enabled, LastLogonDate, OperatingSystem, WhenCreated
|Format-Table 
Just specify the last logon date and let AdminDroid handle the rest!
Users can access shared network resources by logging into computers in Active Directory. However, unauthorized access to a computer with sensitive data can lead to data leaks.
Therefore, it is important to for managing sessions, enforcing IT policies, and maintaining network security.
You can use the PowerShell script below to list all computers and their currently logged-in users.
$Computers = Get-ADComputer -Filter * | Select-Object -ExpandProperty Name
$output = [System.Collections.ArrayList]::new()
ForEach($Computer in $Computers) {
$UserName = Get-CimInstance Win32_ComputerSystem -ComputerName $Computer |
Select-Object -ExpandProperty UserName
$Object = New-Object -TypeName PSObject -Property @{
"Computer Name" = $Computer
"User Logged In" = $UserName
}
$output.Add($Object) | Out-Null
} $output Note: This script retrieves only users logged in via a local session. It does not capture users connected via Remote Desktop Protocol.
Track all user logins to computers in Active Directory with AdminDroid’s single centralized report.
Pro Tip💡: If you want to detect any unauthorized login attempts from restricted computers, you can refer to the Logon Attempts from Restricted Computers report.
In large organizations, applying GPOs to specific computers is often complex. Moving similar computers to a dedicated OU simplifies GPO management but identifying the right computers among thousands of entries presents a challenge. To simplify this process, you can search for computers based on naming conventions, operating systems, or other attributes to pinpoint the desired ones and ensure precise GPO application.
Below are some use cases that can help you search against a large list of computers.
If your organization's computers follow a naming convention with department or role prefixes, use the below PowerShell cmdlet to list computers that start with a certain name.
Get-ADComputer -Filter {Name -like "WI*"} -Properties *|
Select-Object Name, IPv4Address, OperatingSystem, Enabled, WhenCreated
|Format-TableThis will list all computers in your domain with names starting with WI.
When planning an OS upgrade or identifying outdated systems for decommissioning, it is crucial to pinpoint computers running a specific operating system in Active Directory. Use the cmdlet below to find all machines running a particular OS version.
Get-ADComputer -Filter "OperatingSystem -like 'Windows 11*'" -Properties *|
Select-Object Name, IPv4Address, OperatingSystem, Enabled, WhenCreated
|Format-TableThe above cmdlet retrieves computers running Windows 11 in your Active Directory domain.
Imagine a scenario where you need to list only the client workstations in Active Directory. Since the computer list includes all machines (member servers and domain controllers), you can use the cmdlet below to retrieve only the workstations.
Get-ADComputer -Filter "OperatingSystem -notlike '*server*'" -Properties * |
Select-Object Name, IPv4Address, OperatingSystem, Enabled, WhenCreated
|Format-Table
Search for multiple computers in a single report without complex navigation!
You can use AdminDroid’s rich filtering functionality to retrieve the computer list based on your requirements.
Get AdminDroid Office 365 Reporter Now!