Add AD User/Group to Local Administrator Group

If I have a list of servers and groups that match is there a good way to modify to pull both.
Example:

Server01, server01_user
Server02, server02_user
Server03, server03_user

Hello Ryan,

Assuming that ServerUserList.csv contains at least the following two columns: ServerName and UserName, this command will iterate though this csv file attempting to add the specified user to the computer.


Import-Csv ServerUserList.csv | ForEach-Object {
    .\Set-ADAccountasLocalAdministrator.ps1 -Computer $_.ServerName -Trustee $_.UserName
}

Let me know if that helps you!

Hello,

can you please help me, how we can pass through Credential in the script.

$Files= Import-Csv C:\Users\###\Desktop\SQLSERVERS.txt
Foreach ($File in $Files){
.\Set-ADAccountasLocalAdministrator.ps1 -Computer '$File' -Trustee ###\###
}

any suggestions on the error ### are just where domain and username was

How would you read in a file of multiple server names, and then make the trustee for each server be admin_servername_user?

I need to modify this script to add a list of users to local Administrators.

Like so:
.\Set-ADAccountasLocalAdministrator.ps1 -Computer Server1 -trustee c:\UserList.txt


How would I replace $Trustee with a text file of usernames, or add a variable to substitute -Trustee with -UserList c:\Users.txt  ?

Thanks for educating me!

Hello Jaap,

Getting below error.

WARNING: The following exception occurred while retrieving member "add": "The network path was not found. I ran below command only i see different is .ps1 two times on your script.
 
.\Set-ADAccountasLocalAdministrator.ps1 -InputFile C:\server\server.txt -Trustee phon\sql

You need to enable file and print sharing. I did it via a GPO.

Computer Configuration > Administrative Templates > Network > Network Connections > Windows Firewall > Domain Profile.

I am trying to simplify the script if possible but hitting a road block. What i am trying to do is basically have the file on a USB pen drive.  Plug into a Win10 system, run file and have it add a list of predetermined (editable) employee numbers (that are associated with a global domain name) to the local machine as admins. this will give the employees ability to log on, let the machine create the local profile associated with their global accounts.  Thougths or insight is apprciated. 

It is trying to add  the group but after sometime it throws below error, Please help 

WARNING: Exception calling "add" with "1" argument(s): "A member could not be added to or removed from the local group
because the member does not exist.

Thank you for the great help Mr. Brasser
could you please help to add users on windows performance log users? 

Please ignore this one...I can modify AetAccountAsRDPusers.ps1 for performance log users. Thanks!

.\Set-ADAccountasLocalAdministrator.ps1 : Parameter set cannot be resolved using the specified named parameters.
    + CategoryInfo          : InvalidArgument: (:) [Set-ADAccountasLocalAdministrator.ps1], ParentContainsErrorRecordException
    + FullyQualifiedErrorId : AmbiguousParameterSet,Set-ADAccountasLocalAdministrator.ps1

What i'm i doing wrong. Similar to Bill77's issue

Hi Step2skimo, 

Can you show which parameters you are using to execute the command? Based on the error message I think you might be using a wrong set of parameters.


Regards,

Jaap Brasser

Hello Balu, 

you are receiving that error because you are trying to run the selection without the specified parameters. You need to specify both parameters, Computer and Trustee, or Inputfile and Trustee. If you copy and paste the PS1 data and just run the selection you will get the error you are receiving, since the function isn't defined and there are parameters missing. Here's a working example below, Inputfile being a csv of all servers I want to add the trustee account to.

.\Set-ADAccountasLocalAdministrator.ps1 -InputFile C:\Users\darivera\Documents\allservers.csv -Trustee Sp_Task_Scheduler

hello Jaap,
many thanks for your response . 
I was able to successfully use this now.
This worked for me.