Resources For IT Professionals
Post an article
Wikis - Page Details
  • First published by (cMVP, Microsoft Community Contributo)
  • When: 27 Jun 2012 3:42 PM
  • Last revision by (cMVP, Microsoft Community Contributo)
  • When: 9 Sep 2013 8:28 AM
  • Revisions: 32
  • Comments: 31
Options
RSSSubscribe to Article (RSS)
Can You Improve This Article?
Positively! Click Sign In to add the tip, solution, correction or comment that will help other users.

Report inappropriate content using these instructions.
Wiki  >  TechNet Articles  >  Active Directory: Get-ADUser Default and Extended Properties

Active Directory: Get-ADUser Default and Extended Properties

Active Directory: Get-ADUser Default and Extended Properties

The concept of default and extended properties available with the PowerShell Active Directory cmdlets are defined in Active Directory: PowerShell AD Module Properties. The PowerShell Get-ADUser cmdlet supports the default and extended properties in the following table. Many can be assigned values with the Set-ADUser cmdlet. In the table, default properties are shown with the property name highlighted in cyan. Extended properties are highlighted in pink.


Property Syntax R/RW lDAPDisplayName
AccountExpirationDate DateTime RW accountExpires, converted to local time
AccountLockoutTime DateTime RW lockoutTime, converted to local time
AccountNotDelegated Boolean RW userAccountControl (bit mask 1048576)
AllowReversiblePasswordEncryption Boolean RW userAccountControl (bit mask 128)
BadLogonCount Int32 R badPwdCount
CannotChangePassword Boolean RW nTSecurityDescriptor
CanonicalName String R canonicalName
Certificates ADCollection RW userCertificate
ChangePasswordAtLogon Boolean W If pwdLastSet = 0
City String RW l
CN String R cn
Company String RW company
Country String RW c (2 character abbreviation)
Created DateTime R whenCreated
Deleted Boolean R isDeleted
Department String RW department
Description String RW description
DisplayName String RW displayName
DistinguishedName String (DN) R distinguishedName
Division String RW division
DoesNotRequirePreAuth Boolean RW userAccountControl (bit mask 4194304)
EmailAddress String RW mail
EmployeeID String RW employeeID
EmployeeNumber String RW employeeNumber
Enabled Boolean RW userAccountControl (bit mask not 2)
Fax String RW facsimileTelephoneNumber
GivenName String RW givenName
HomeDirectory String RW homeDirectory
HomedirRequired Boolean RW userAccountControl (bit mask 8)
HomeDrive String RW homeDrive
HomePage String RW wWWHomePage
HomePhone String RW homePhone
Initials String RW initials
LastBadPasswordAttempt DateTime R badPasswordTime, converted to local time
LastKnownParent String (DN) R lastKnownParent
LastLogonDate DateTime R lastLogonTimeStamp, converted to local time
LockedOut Boolean RW msDS-User-Account-Control-Computed (bit mask 16)
LogonWorkstations String RW userWorkstations
Manager String (DN) RW manager
MemberOf ADCollection R memberOf
MNSLogonAccount Boolean RW userAccountControl (bit mask 131072)
MobilePhone String RW mobile
Modified DateTime R whenChanged
Name String R cn (Relative Distinguished Name)
ObjectCategory String R objectCategory
ObjectClass String R objectClass, most specific value
ObjectGUID Guid R objectGUID converted to string
Office String RW physicalDeliveryOfficeName
OfficePhone String RW telephoneNumber
Organization String RW o
OtherName String RW middleName
PasswordExpired Boolean RW msDS-User-Account-Control-Computed (bit mask 8388608)
PasswordLastSet DateTime RW pwdLastSet, local time
PasswordNeverExpires Boolean RW userAccountControl (bit mask 64)
PasswordNotRequired Boolean RW userAccountControl (bit mask 32)
POBox String RW postOfficeBox
PostalCode String RW postalCode
PrimaryGroup String R Group with primaryGroupToken
ProfilePath String RW profilePath
ProtectedFromAccidentalDeletion Boolean RW nTSecurityDescriptor
SamAccountName String RW sAMAccountName
ScriptPath String RW scriptPath
ServicePrincipalNames ADCollection RW servicePrincipalName
SID Sid R objectSID converted to string
SIDHistory ADCollection R sIDHistory
SmartcardLogonRequired Boolean RW userAccountControl (bit mask 262144)
State String RW st
StreetAddress String RW streetAddress
Surname String RW sn
Title String RW title
TrustedForDelegation Boolean RW userAccountControl (bit mask 524288)
TrustedToAuthForDelegation Boolean RW userAccountControl (bit mask 16777216)
UseDESKeyOnly Boolean RW userAccountControl (bit mask 2097152)
UserPrincipalName String RW userPrincipalName

See Also


, , , , , , , , , , , [Edit tags]
Leave a Comment
  • Please add 4 and 1 and type the answer here:
  • Post
Wiki - Revision Comment List(Revision Comment)
Sort by: Published Date | Most Recent | Most Useful
Comments
  • 9 Sep 2013 8:28 AM

    Richard Mueller edited Revision 30. Comment: Removed "Return to top" links.

  • 8 Sep 2013 5:46 PM

    Richard Mueller edited Revision 28. Comment: Improve See Also links, link to parent article.

  • 29 Jul 2013 6:44 AM

    Richard Mueller edited Revision 26. Comment: Removed lDAPDisplayNames of AD attributes from the table, so it only documents default and extended properties

  • 18 Apr 2013 7:51 PM

    Richard Mueller edited Revision 24. Comment: Changed color formatting

  • 3 Apr 2013 3:15 PM

    Richard Mueller edited Revision 23. Comment: Used colors to designate default and extended properties

  • 25 Mar 2013 9:35 AM

    Richard Mueller edited Revision 22. Comment: Clarified -Properties parameter not case sensitive

  • 18 Mar 2013 7:30 AM

    Richard Mueller edited Revision 21. Comment: Explained that properties with lower case initial letter are AD attributes

  • 26 Feb 2013 3:26 PM

    Richard Mueller edited Revision 20. Comment: Change background color of default properties to light blue

  • 26 Feb 2013 12:22 PM

    Richard Mueller edited Revision 19. Comment: Made default properties bold in the table

  • 23 Jan 2013 9:46 AM

    Richard Mueller edited Revision 18. Comment: Added horizontal rules and "Return to Top"

Page 1 of 3 (25 items) 123
Wikis - Comment List
Sort by: Published Date | Most Recent | Most Useful
Posting comments is temporarily disabled until 10:00am PST on Saturday, December 14th. Thank you for your patience.
Comments
  • Posted by
    on 28 Jun 2012 9:14 AM

    Richard Mueller edited Original. Comment: Added link to parent Wiki article

  • Posted by
    on 4 Jul 2012 9:03 AM

    Richard Mueller edited Revision 1. Comment: Minor edits

  • Posted by
    on 7 Jul 2012 9:33 AM

    Richard Mueller edited Revision 2. Comment: Updated values in table

  • Posted by
    on 7 Jul 2012 9:44 AM

    Richard Mueller edited Revision 4. Comment: Updated values in table

  • Posted by
    on 7 Jul 2012 4:09 PM

    Richard Mueller edited Revision 5. Comment: Added links in "See Also" section

  • Posted by
    on 8 Jul 2012 10:00 AM

    Richard Mueller edited Revision 6. Comment: Update values in table

  • Posted by
    on 8 Jul 2012 11:43 AM

    Richard Mueller edited Revision 7. Comment: Update value in table

  • Posted by
    on 8 Jul 2012 12:29 PM

    Richard Mueller edited Revision 8. Comment: Updated value in table, no longer "In Progress"

  • Posted by
    on 14 Jul 2012 7:33 AM

    Richard Mueller edited Revision 9. Comment: Added tag

  • Posted by
    on 2 Aug 2012 9:47 AM

    Richard Mueller edited Revision 10. Comment: Added (en-US) to title and tags

  • Posted by
    on 26 Oct 2012 5:23 PM

    Richard Mueller edited Revision 11. Comment: Added tag

  • Posted by
    on 26 Oct 2012 5:23 PM

    Richard Mueller edited Revision 12. Comment: Should not have added the "Has TOC" tag

  • Posted by
    on 30 Oct 2012 9:40 AM

    Richard Mueller edited Revision 13. Comment: Added tag

  • Posted by
    on 1 Nov 2012 6:32 AM

    Thanks for sharing