Actually I found a method outside of BatchPatch using Powershell,
`function ListAdministrators($Group)<br />
{<br />
$members= $Group.psbase.invoke(“Members”) | %{$_.GetType().InvokeMember(“Name”, ‘GetProperty’, $null, $_, $null)}<br />
$members<br />
}</p>
<p>function Ping-Server {<br />
Param([string]$srv)<br />
$pingresult = Get-WmiObject Win32_PingStatus -Filter “Address=’$srv'”<br />
if($pingresult.StatusCode -eq 0) {$true} else {$false}<br />
}</p>
<p>if ($args.Length -ne 2) {<br />
Write-Host “`tUsage: “
Write-Host “
Write-Host “ttExample: .AddToLocalAdmin.ps1 FooBarGroup c:tempmymachines.txt”
return
}
#Your domain, change this
$domain = “putdomainnamehere”
#Get the user to add
$username = $args[0]
#File to read computer list from
$strComputers = Get-content $args[1]
foreach ($strComputer in $strComputers)
{
if (Ping-Server($strComputer)) {
$computer = [ADSI](“WinNT://” + $strComputer + “,computer”)
$Group = $computer.psbase.children.find(“administrators”)
# This will list what’s currently in Administrator Group so you can verify the result
write-host -foregroundcolor green “====== $strComputer BEFORE =====”
ListAdministrators $Group
write-host -foregroundcolor green “====== BEFORE =====”
# Even though we are adding the AD account
# It is being added to the local computer and so we will need to use WinNT: provider
$Group.Add(“WinNT://” + $domain + “/” + $username)
write-host -foregroundcolor green “====== $strComputer AFTER =====”
ListAdministrators $Group
write-host -foregroundcolor green “====== AFTER =====”
}
else
{
write-host -foregroundcolor red “$strComputer is not pingable”
}
}
You feed it the user or groupname and a text file of the list of machines.
Perhaps you could help feed this into BatchPatch.
If not I understand, but just wanted to ask and then share.
PS C:tools> .AddToLocalAdmin.ps1 testgroupname c:toolsservers.txt
