我在企业环境中运行
Windows XP桌面.我怎样才能知道我所属的AD群组?
尝试运行gpresult / R for RSoP summary或gpresult / V,以便作为计算机管理员从命令行输出详细信息.它应该输出这样的东西:
C:\Windows\system32>gpresult /V Microsoft (R) Windows (R) Operating System Group Policy Result tool v2.0 Copyright (C) Microsoft Corp. 1981-2001 Created On 2/10/2010 at 10:27:41 AM RSOP data for OQMSupport01\- on OQMSUPPORT01 : Logging Mode ------------------------------------------------------------ OS Configuration: Standalone Workstation OS Version: 6.1.7600 Site Name: N/A Roaming Profile: N/A Local Profile: C:\Users\- Connected over a slow link?: No COMPUTER SETTINGS ------------------ Last time Group Policy was applied: 2/10/2010 at 10:16:09 AM Group Policy was applied from: N/A Group Policy slow link threshold: 500 kbps Domain Name: OQMSUPPORT01 Domain Type: <Local Computer> Applied Group Policy Objects ----------------------------- N/A The following GPOs were not applied because they were filtered out ------------------------------------------------------------------- Local Group Policy Filtering: Not Applied (Empty) The computer is a part of the following security groups ------------------------------------------------------- System Mandatory Level Everyone Debugger Users IIS_WPG sqlServer2005MSsqlUser$OQMSUPPORT01$ACT7 sqlServerMSsqlServerADHelperUser$OQMSUPPORT01 BUILTIN\Users NT AUTHORITY\SERVICE CONSOLE logoN NT AUTHORITY\Authenticated Users This Organization BDESVC BITS CertPropSvc EapHost hkmsvc IKEEXT iphlpsvc LanmanServer MMCSS MSiSCSI RasAuto RasMan RemoteAccess Schedule SCPolicySvc SENS SessionEnv SharedAccess ShellHWDetection wercplsupport Winmgmt wuauserv LOCAL BUILTIN\Administrators USER SETTINGS -------------- Last time Group Policy was applied: 2/10/2010 at 10:00:51 AM Group Policy was applied from: N/A Group Policy slow link threshold: 500 kbps Domain Name: OQMSupport01 Domain Type: <Local Computer> The user is a part of the following security groups --------------------------------------------------- None Everyone Debugger Users HomeUsers BUILTIN\Administrators BUILTIN\Users NT AUTHORITY\INTERACTIVE CONSOLE logoN NT AUTHORITY\Authenticated Users This Organization LOCAL NTLM Authentication High Mandatory Level The user has the following security privileges ---------------------------------------------- Bypass traverse checking Manage auditing and security log Back up files and directories Restore files and directories Change the system time Shut down the system Force shutdown from a remote system Take ownership of files or other objects Debug programs Modify firmware environment values Profile system performance Profile single process Increase scheduling priority Load and unload device drivers Create a pagefile Adjust memory quotas for a process Remove computer from docking station Perform volume maintenance tasks Impersonate a client after authentication Create global objects Change the time zone Create symbolic links Increase a process working set
或者,如果使用ActiveDirectory PowerShell模块(或带有远程服务器管理工具的客户端操作系统)登录到Windows Server操作系统,请尝试使用Get-ADPrincipalGroupMembership cmdlet:
C:\Users\username\Documents> Get-ADPrincipalGroupMembership username | Select name name ---- Domain Users All Announcements employees_US remotes ceo-report all-engineering not-sales Global-NotSales