# GPO & OU Enumeration

### **GPO Enumeration**

**Get list of GPO in current Domain**

{% code overflow="wrap" %}

```powershell
Get-DomainGPO
Get-DomainGPO -ComputerIdentity dcorp-student1
```

{% endcode %}

\*\*Get GPOs which use Restricted Groups or groups.xml for interesting users

{% code overflow="wrap" %}

```powershell
Get-DomainGPOLocalGroup
```

{% endcode %}

**Get users which are in a local group of a machine using GPO**

{% code overflow="wrap" %}

```powershell
Get-DomainGPOComputerLocalGroupMapping -ComputerIdentity dcorp-student1
```

{% endcode %}

**Get machines where the given user is member of a specific group** 

{% code overflow="wrap" %}

```powershell
Get-DomainGPOUserLocalGroupMapping -Identity student1 - Verbose
```

{% endcode %}

### OU Enumeration

**Get OUs in a domain**

{% code overflow="wrap" %}

```powershell
Get-DomainOU
Get-ADOrganizationalUnit -Filter * -Properties *
```

{% endcode %}

**Get GPO applied on an OU. Read GPOname from gplink attribute from Get-NetOU**

{% code overflow="wrap" %}

```powershell
Get-DomainGPO -Identity "{0D1CC23D-1F20-4EEE-AF64-
D99597AE2A6E}"
```

{% endcode %}