[00:03] Now, we are…
[00:10] You can find objects like users, computers, contacts, groups,… in the domain/forest/OU/other containers with "Find Users, Contacts, and Groups" utility
[00:19] You have to specify Name or Description at least about the expected object(s).
In the previous example, you are finding object(s) which you knew name/description.
However, you're not known where a user has EmployID "SNP" or has Email "[email protected]" live in.
To accomplish this, now, you are finding object(s) with advanced finding technique.
This is the Search results.
You must specify the type of object(s), if not, the result objects(s) will have the wrong type.
Example: you are finding a computer name "DMT ", but currently, the type of finding the object(s) is Users/Contacts/Groups so the result is the unexpected object(s) will be shown.
To rename an object, an user account, for example:
Right-click the user account that you want to rename, and then click Rename.
Type the new full name for the user account, and then press ENTER.
The Rename User dialog box appears.
The name that you type is the full name.
You may edit the name, if necessary.
quote s first name, last name and display name in the First name, Last name, Display name, respectively.
Let's start with this example: finding any users whose First Name(s) start with "S
[1:36] "Active Directory holds many different kind of objects details. it contains info about users, groups, computers, organization units,resources etc. so there are occasions where we need to find specific objects with in the AD" – rebeladmin.com
[00:54] *" in this context represents a regular expression.
"S*" means the first character is S and follow any 1 or 2 or 0 character(s) is okay.
To learn more about Regular Expression, I just made a note about it, at http://bit.ly/Regular-Expressions.
Searching has 2 types: Find and Query.
While Find only shown the result(s) at the time the searching command is executed, Query does searching by executing the command(s) then store the return result(s) in this query, thus you can review results later.
The main purpose of searching with the query is that you can "grouping" object(s) which has common "attributes" (search criteria).
[2:08] This console similar to the Advanced Find feature in the previous example.
You must explore terms: regular expressions
object attributes, other terms similar to AD objects and terms servicing for defining a query such as: "Starts with", "Ends with", "Is", "Is not",…
You must specify Name, location "Query root", and Query Define for New Query.
[2:25] Example, we are finding a Computer has exactly name is "DMT
[2:37] "Select container
Click the browse button to select a container to search in. I always select Entire Directory when searching for objects. I find this much faster than trying to narrow it down to a specific container. This works in small to medium size environments however, if you have a large Active Directory environment you will want to narrow your search" – activedirectorypro.com
In this demonstration, the "grouping" ability of the Query will be failed because of, we are finding a computer with the exact name while the computer name is recommended not be overlapped in an environment (least in one domain).
[3:18] Now we are defining a query that finds all users in this "SnoOpy.com " domain with a simple expression: "Name has a value".
Everyone needs an idol and…
Every user has a name :)
[3:39] "Although PowerShell and Microsoft's Active Directory Users and Computers (ADUC) console can help with finding accounts in AD, both tools are neither user-friendly nor flexible. Enter ManageEngine's AD management solution, ADManager Plus. With a built-in AD search engine, ADManager Plus is more powerful, flexible, and practical than the basic search functionality offered in native AD consoles" – manageengine.com
[3:55] You can add more Properties "columns" to have granular details about objects like: Firstname and Lastname which are hidden by default.
With this query, we can list all users in this "SnoOpy.com " domain.
One more example: we are querying objects (user accounts), which have non-expire password.
In the previous part "Creating user account", you observed that administrators can specify when a user account being created, its password will be expired or not by check on security option bellow the password field.
[4:32] "The task of finding a user or group name in Active Directory using wildcard, regular expression or pattern is not as evident as it seems. The matter is that by default the standard ADUC (AD Users and Computers) console doesn’t allow use of wildcards in the beginning or in the middle of a search phrase" – woshub.com
[4:43] Query's definition can be exported as an XML file for further reuse by importing to this server or on other servers for "querying" objects.
[5:00] Importing Query