I have a script that runs on a daily basis, it reads the contents of the Domain Admins group and compares it to a master list. If there is a difference between the two it does a compare object and sends the result via email to all our senior admins.
It works well but has only highlighted so far that one of our admins always forgets to update the master list, but at least we semi-regularly get notified that the system works. Patrick Patrick Whiteside | Senior Engineer [cid:[email protected]]<http://> T | 0845 458 00 90 F | 0870 421 59 24 W | blue256.co.uk<http://blue256.co.uk/> Head Office | Saxon House, Hellesdon Park Road, Norwich, NR6 5DR This email is confidential and may well also be privileged. If you have received it in error you are on notice of its status. Please notify us immediately by reply email and then delete this message from your system. Please do not copy it or use it for any other purpose, or disclose its content to any other person. To do so could be a breach of confidentiality. All emails and any attachments are believed to be virus free, however, all emails should be virus checked before being downloaded and we accept no responsibility therefore. Please contact our offices on 0845 458 00 90 or email [email protected]<mailto:> if you need assistance. Blue256 Limited Registered Office: Saxon House, Hellesdon Park Road, Drayton High Road, Norwich NR6 5DR Company Registration Number: 05015705 Company Registered in England and Wales From: [email protected] [mailto:[email protected]] On Behalf Of Alice Goodman Sent: 31 July 2015 02:28 To: Exchange List <[email protected]> Subject: [Exchange] PS Script to see if specific DL has had members added recently to offset admins adding wrong people New hires are inadvertently getting added to distribution lists when profiles are copied. Is there a way to stop this from happening on more strictly controlled lists? (I know, stop hitting head against the wall…) This is becoming a BIG problem here. Does anyone know of some PowerShell that we can run nightly or weekly against maybe 20 key DL’s to see if anyone has been added to them in the past xx time? Or some other solution? The issue is that the Admins in Help Desk create new users by copying other users that “resemble’ the new hire. I know that using Templates would be the best way, but that has never been implemented here. I realize that I am looking for a solution to a bad practice. I looked at Owner Approval, but an Admin updating a DL does not cause that to be triggered. Only end-users, using OWA. Thanks, Alice
