So, have you ever been tasked with moving file shares or printer shares to a new server? How enjoyable is it combing through Group Policy to find where the old server name is used? Yeah, its not.
Powershell to the Rescue! The below script will look for any text within all the group policies and let you know which ones the text is found in. A server name is the most obvious thing to look for, but it could be a user name or a share name, etc.
# Get the string to search for
$searchString = Read-Host -Prompt "Enter the string to search for in GPOs"
# Set the domain to search for GPOs
$DomainName = $env:USERDNSDOMAIN
# Check if Group Policy module is available, import if not
if (-not (Get-Module -Name GroupPolicy -ListAvailable)) {
Import-Module GroupPolicy -ErrorAction Stop
}
# Find all GPOs in the current domain
Write-Host "Finding all the GPOs in $DomainName"
try {
$allGposInDomain = Get-GPO -All -Domain $DomainName -ErrorAction Stop
} catch {
Write-Host "Error: Failed to retrieve GPOs. $_" -ForegroundColor Red
exit
}
$matchedGPOs = @()
# Search through each GPO's XML for the specified string
Write-Host "Starting search..."
foreach ($gpo in $allGposInDomain) {
try {
$report = Get-GPOReport -Guid $gpo.Id -ReportType Xml -ErrorAction Stop
} catch {
Write-Host "Error: Failed to retrieve report for $($gpo.DisplayName). $_" -ForegroundColor Yellow
continue
}
if ($report -match $searchString) {
Write-Host "Match found in: $($gpo.DisplayName)" -ForegroundColor Green
$matchedGPOs += $gpo.DisplayName
} else {
Write-Host "No match in: $($gpo.DisplayName)"
}
}
# Display results
Write-Host "`nResults:`n**************" -ForegroundColor Yellow
foreach ($match in $matchedGPOs) {
Write-Host "Match found in: $($match)" -ForegroundColor Green
}