Yogi's blog

Find unknown SID in GPO

Yogeshwaran R's photo
Yogeshwaran R
·

1 min read

Import-Module GroupPolicy

$gpo = Get-GPO -All

Foreach ($g in $gpo) {

$permissions = $g.getsecurityinfo()

Foreach ($p in $permissions) {

If ($p.Trustee.SidType -eq “unknown”) {

Write-Host “Policy with unknown SID: $($g.DisplayName)”

Write-Host “Trustee SID: $($p.Trustee.Sid)”

} #end if

} #end foreach permissions

Powershell scriptingActive Directory