Remove-ADPrincipalGroupMembership脚本不会删除用户

Question

我有以下脚本运行时没有错误，但它不会将用户从组中删除。我不知道我错过了什么。我试过运行这个没有用户名变量和实际名称，但也没有工作。先谢谢您的帮助。

$group = @(
'Aberdeen Refer Team','Air Force Refer Team','Coliseum Refer Team','Denbigh Refer Team','Warwick Refer Team','Wards Corner Refer Team', 
'Eagle HarborRefer Team','Chesapeake Refer Team','Willow Oaks Refer Team','poquoson Refer Team','Oyster Point Refer Team','NASA ReferTeam', 
"Contact Center Refer Team",'Yorktown Refer Team','WB New Town Refer Team','WB City Refer Team','Stoneybrook Refer Team', 
'Hayes Refer Team','Hilltop Refer Team') 

$user = Get-aduser "%username%" -Properties MemberOf 
if ($user.MemberOf -match $group) 
{ 
    foreach ($group in $user) 
    { 
Remove-ADPrincipalGroupMembership -identity $user -MemberOf $group -confirm:$False 
} 
} 

Answer 1

更换%username%与$env:USERNAME来获取用户名，然后找到所有的用户组，Get-ADPrincipalGroupMembership：

$TeamNames = @('Aberdeen Refer Team','Hilltop Refer Team') 

$User = Get-ADUser "$($env:USERNAME)" 

# Find all the groups that the user is a member of, and filter down to just those in the $TeamNames list 
$UserGroups = Get-ADPrincipalGroupMembership -Identity $user | Where-Object { $TeamNames -contains $_.Name } 

# Iterate over the groups 
foreach ($Group in $UserGroups) 
{ 
    # Remove each group membership from the user 
    Remove-ADPrincipalGroupMembership -Identity $User -MemberOf $Group -Confirm:$false 
}