Remove members of a group
Description
This example shows how you can use the Group resource to ensure a group exists and excludes a
specified list of members.
With Ensure set to Present and GroupName set to GroupName1, the resource adds the
GroupName1 local group if it doesn't exist.
With MembersToExclude set to an array of Username1 and Username2, the resource removes
Username1 and Username2 from GroupName1 if they're members. It ignores the group membership of
all other accounts.
With Invoke-DscResource
This script shows how you can use the Group resource with the Invoke-DscResource cmdlet to
ensure the local group GroupName1 exists and doesn't include Username1 or Username2 as
members.
[CmdletBinding()]
param()
begin {
$SharedParameters = @{
Name = 'Group'
ModuleName = 'PSDscResource'
Properties = @{
GroupName = 'GroupName1'
Ensure = 'Present'
MembersToExclude = @(
'Username1'
'Username2'
)
}
}
$NonGetProperties = @(
'Ensure'
'MembersToExclude'
)
}
process {
$TestResult = Invoke-DscResource -Method Test @SharedParameters
if ($TestResult.InDesiredState) {
$QueryParameters = $SharedParameters.Clone()
foreach ($Property in $NonGetProperties) {
$QueryParameters.Properties.Remove($Property)
}
Invoke-DscResource -Method Get @QueryParameters
} else {
Invoke-DscResource -Method Set @SharedParameters
}
}
With a Configuration
This snippet shows how you can define a Configuration with a Group resource block to ensure the
local group GroupName1 exists and doesn't include Username1 or Username2 as members.
Configuration RemoveMembers {
Import-DscResource -ModuleName 'PSDscResources'
Node localhost {
Group ExampleGroup {
GroupName = 'GroupName1'
Ensure = 'Present'
MembersToExclude = @(
'Username1'
'Username2'
)
}
}
}
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for