Chapter 28. Active Directory Group Management application
Windows PowerShell offers a wide range of management features, from its immediate and intuitive command shell in which “one-liners” rule, to interacting with the Win32 API environment. With such breadth and interoperability to offer, PowerShell is well-positioned for lightweight application development duties.
In this chapter I demonstrate how to use PowerShell in collaboration with other Microsoft technologies to produce a graphical tool for managing Active Directory group memberships. A common customer request is for a tool that can manage temporary group membership. For example, a customer may request an application for managing group membership around a project timeline. By automating additions and removals from a group, such an application removes reliance on human intervention as well as the inherent security risk of users retaining unneeded groups.
Before diving in and writing any PowerShell code let’s evaluate the scope of the project.
Before writing any PowerShell code we must first define the specifications of the group management application:
