Add attribute to Global Catalog Replication using PowerShell

Add Attributes to Global Catalog Replication

It is common for IT admins to notice that few AD attributes are not natively in the global catalog replication set. Adding these attributes to the Global Catalog replication set is necessary so that all the DC's in the network carry the updated copies of all the attributes.
 
To add attributes to the Global Catalog Replication set, supply the attribute name as parameter and execute the following PowerShell script. 

Script

<# .SYNOPSIS This script can be used to add Attributes to Global Catalog Replication . .DESCRIPTION This script can be used to add Attributes to Global Catalog Replication . .EXAMPLE C:\PS> C:\Script\Replicate_To_GC.ps1 badPwdCount
To replicate badPwdCount to GlobalCatalogue.
#>

param([String] $attribute )
$strAttrName = $attribute
$boolAddToGC = $true
$root = [ADSI] “LDAP://RootDSE”
$objAttr = [ADSI](“LDAP://cn=” + $strAttrName + “,” + $root.schemaNamingContext)
#You can add to the attributes that are stored in the global catalog by setting the isMemberOfPartialAttributeSet attribute of an attributeSchema object to TRUE.

$objAttr.Put(“isMemberOfPartialAttributeSet”, $boolAddToGC)
$objAttr.setInfo()

 





    Limited-period offers on our IAM solutions




      • Related Articles

      • List Attributes of any Active Directory object

        Most PowerShell scripts available in the internet can help administrators retrieve certain common attributes of an user, group, or a computer. Most scripts either document only specified attributes, or at best only the attributes that have been ...
      • PowerShell as an AD group management tool

        Group management can be quite a challenge for Active Directory (AD) administrators day in, day out. Many administrators use Microsoft's PowerShell technology to perform basic AD user management tasks. Below are some key PowerShell scripts and ...
      • Monitoring Active Directory Group Membership Changes

        For security reasons, users in an Active Directory (AD) network would be put in groups, and they will be granted or denied certain privileges according to the groups they belong to. This is done so that users do not have unnecessary access to ...
      • WMI privileges for a non-administrator user using Powershell

        Administrators often find themselves working against time. In an environment where the time is of essence, certain day-to-day tasks like password resets, enabling remote access, etc., can be rationed off of technicians. However, technicians are ...
      • PowerShell as an AD bulk user management tool

        Bulk AD user creation can be quite a challenge for Active Directory (AD) administrators day in, day out. Many administrators use Microsoft's PowerShell to create users and perform other such basic AD user management tasks. Below are some key ...