.png?width=100&auto=webp&quality=80&disable=upscale "Picture of John Savill")
.png?width=400&auto=webp&quality=80&disable=upscale "John Savill")
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
How can I create a list of all User Accounts?
John Savill
September 5, 1999
2 Min Read
A. A. There a number of ways to produce a list of all user accounts in a domain (or accounts just on a machine):
The best way is to use a utility shipped with the Resource Kit called ADDUSERS.EXE which is used to add users that have been detailed in a text file. This image can also be used to export the current users and groups into a comma separated file. What is a comma separated file? This is just a file that has comma's between fields and when read into a spreadsheet/database, the commas are detected, and the commas are replaced with a new field. The format is :
addusers /d
e.g. addusers /d johnslis.csf
Note: Be very careful not to enter /e instead of /d, /e deletes all users and groups!
This file can then be read into a spreadsheet/database (such as Excel) and you will need to specify that comma is the delimiter.A utility called USRSTAT.EXE is shipped with the NT Server Resource Kit, and this utility supplies information on all members of a given domain, including time/date of last login
usrstat
e.g. usrstat savilltechThe Resource Kit utility SHOWMBRS.EXE will show all the users in a given group, so you could dump out the Domain Users group of a domain,
showmbrs "domain users"
e.g. showmbrs "savilltechdomain users"
You could add "> " to output to a file, e.g. showmbrs "savilltechdomain users" > allusers.listFinally if you don't have the resource kit (go and get it), you can use the NET command to show all users in a domain
net user /domain
Which will list all users in the current domain, again you can user > to output to a file. You could then get more information on each user this lists by entering
net user /domain
e.g. net user savillj /domain
You could easily write a perl script to automate this task.You could also use Windows Scripting Host which gives you the option of being able to be more flexible with the output. The code below just lists the full name
set oDomain = GetObject("WinNT://SAVILLTECH") WScript.echo "Domain : " + oDomain.name for each oDomainItem in oDomain if oDomainItem.Class = "User" then WScript.echo " Full Name=" + oDomainItem.FullName end if next
It may be that none of these suit your exact needs, or you need to access the user list from within a program, you can use the NetUserEnum(), NetGroupEnum() and NetLocalGroupEnum() functions to get the required information. For each of these, the first argument is the computer name to perform the operation on, a null pointer will make it use the current system, or use NetGetDCName() to get the computer name of the Domain Controller. That's enough code for me, I'm starting to sweat :-)
About the Author
You May Also Like
.png?width=700&auto=webp&quality=80&disable=upscale)