This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 4%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EF%3C/text%3E%3C/svg%3E)
Hello,
I want to use PowerShell to write to the flags attribute of a group object in my Active Directory.
But PowerShell with the ActiveDirectory module won't even retrieve this attribute.
Why is that?
Is there any PowerShell module that allows one to write any attribute in AD?
Thanks
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hello @fubar ,
Would you please tell me how things are going on your side. If you have any questions or concerns about the information I provided, please don't hesitate to let us know.
Thanks for your time and have a nice day!
Best Regards,
Daisy Zhou
Hello @fubar ,
I am just writing to see if this question has any update. If anything is unclear, please feel free to let us know.
Thanks for your time and have a nice day!
Best Regards,
Daisy Zhou
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 74%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
You can always fall back to using ADSI in PowerShell.
Not showing the script (or at least the portion of the script) you're having a problem with is never a good idea.
It may be that the object returned by PowerShell has decoded the flag bits into named properties of that object, but who can tell exactly what you're trying to do?
Hello @fubar ,
Thank you for posting here.
Based on the descroption above, not sure what PS command you are using and what error message you are receiving.
Here is PS command, I can add flags attribute value to one group (groups1 is the group name, I set the flags value as 2.).
For example:
Set the flags value:
Get-ADGroup -Identity group1 -Properties * | Set-ADGroup -replace @{flags = 2}
View the flags value:
(Get-ADGroup -Identity group1 -Properties *)
Set-ADGroup
https://learn.microsoft.com/en-us/powershell/module/addsadministration/set-adgroup?view=win10-ps
hope the information above is helpful.
Should you have any question or concern, please feel free to let us know.
Best Regards,
Daisy Zhou
