powershellactive-directory

get all ADcontroller of another domain


I'm stuck in a stupid problem that I can't figure out how to solve.
I need to get all domain controllers of a trusted domain.

With this piece of code I get all DC in the current domain Get-ADDomainController -Filter *
With this I get one DC from target domain Get-ADDomainController -domain MyTrustedDomain -Discover
But how can I get all DC in target domain?


Solution

  • One way without using AD module:

    $a = new-object 'System.DirectoryServices.ActiveDirectory.DirectoryContext'("domain", "other.domain.local" )
    [System.DirectoryServices.ActiveDirectory.DomainController]::FindAll($a)
    

    You need to be an 'authenticated user' in the remote domain or add username and password parameter to the DirectoryContext object