Get-ComputerWithDefinedStatus

Computers: Lists disabled or inactive Active Directory computers

Script

param(
	[Parameter(Mandatory = $true, ParameterSetName = "Local or Remote DC")]
	[Parameter(Mandatory = $true, ParameterSetName = "Remote Jumphost")]
	[string]$OUPath,

	[Parameter(ParameterSetName = "Local or Remote DC")]
	[Parameter(ParameterSetName = "Remote Jumphost")]
	[switch]$Disabled,

	[Parameter(ParameterSetName = "Local or Remote DC")]
	[Parameter(ParameterSetName = "Remote Jumphost")]
	[switch]$InActive,

	[Parameter(Mandatory = $true, ParameterSetName = "Remote Jumphost")]
	[PSCredential]$DomainAccount,

	[Parameter(ParameterSetName = "Local or Remote DC")]
	[Parameter(ParameterSetName = "Remote Jumphost")]
	[string]$DomainName,

	[Parameter(ParameterSetName = "Local or Remote DC")]
	[Parameter(ParameterSetName = "Remote Jumphost")]
	[ValidateSet('Base', 'OneLevel', 'SubTree')]
	[string]$SearchScope = 'SubTree',

	[Parameter(ParameterSetName = "Local or Remote DC")]
	[Parameter(ParameterSetName = "Remote Jumphost")]
	[ValidateSet('Basic', 'Negotiate')]
	[string]$AuthType = "Negotiate"
)

try {
	Import-Module ActiveDirectory -ErrorAction Stop

	[hashtable]$cmdArgs = @{
		'ErrorAction' = 'Stop'
		'AuthType'    = $AuthType
	}
	if ($null -ne $DomainAccount) {
		$cmdArgs.Add("Credential", $DomainAccount)
	}
	if ([System.String]::IsNullOrWhiteSpace($DomainName)) {
		$cmdArgs.Add("Current", 'LocalComputer')
	} else {
		$cmdArgs.Add("Identity", $DomainName)
	}
	$Domain = Get-ADDomain @cmdArgs

	$searchArgs = @{
		'ErrorAction'   = 'Stop'
		'AuthType'      = $AuthType
		'Server'        = $Domain.PDCEmulator
		'SearchBase'    = $OUPath
		'SearchScope'   = $SearchScope
	}
	if ($null -ne $DomainAccount) {
		$searchArgs.Add("Credential", $DomainAccount)
	}

	$results = @()

	if ($Disabled) {
		$disabledComputers = Search-ADAccount @searchArgs -AccountDisabled -ComputersOnly | 
			Select-Object @{n='Status';e={'Disabled'}}, DistinguishedName, SAMAccountName
		$results += $disabledComputers
	}

	if ($InActive) {
		$inactiveComputers = Search-ADAccount @searchArgs -AccountInactive -ComputersOnly | 
			Select-Object @{n='Status';e={'Inactive'}}, DistinguishedName, SAMAccountName
		$results += $inactiveComputers
	}

	if ($results.Count -gt 0) {
		Write-Output ($results | Sort-Object SAMAccountName)
	} else {
		Write-Output "No computers found with the specified status."
	}
} catch {
	Write-Error $_
	exit 1
}

Customize

OUPath string

Specifies the Active Directory path (OU).

Disabled switch

Off

Shows the disabled computers.

InActive switch

Off

Shows the inactive computers.

DomainAccount PSCredential

Active Directory Credential for remote execution on jumphost without CredSSP.

DomainName string

Name of the Active Directory Domain.

SearchScope string

Specifies the scope of the search (Base, OneLevel, SubTree).

AuthType string

Specifies the authentication method to use (Basic or Negotiate).