User Management Commands

Viewing User Privileges

to list user privileges:

whoami \all

Viewing Users and Groups

To list all users:

net user

to get details about specific users:

net user DevNull

net user u1

net user %username%

To get details about local group

net localgroup

To get details about specific group

net localgroup administrator

To view details of other groups:

net localgroup "Remote Desktop Users"

net localgroup TelnetClients

Managing Users

to add new user:

net user DevNull /add

net user u1 test@123 /add

• u1 - username

• test@123 - password

To make a user an administrator

net localgroup administrators u1 /add

• administrators - group name

• u1 - username

To Delete a user:

net user u1 /del

To update user's password:

net user u1 123456789

Enabling and Disabling Accounts

To enable a user account

net user administrator /active:yes

To disable account

net user administrator /active:no

Removing Users from Groups

To remove a user drom the administrators group:

net localgroup administrators DevNull /del

File Ownership and Access Control

To take ownership of an file:

takeown /f runme.bat

To modify access control lists (ACLs) for files and folders:

cacls runme.bat /G DevNull:F

To display permissions of a file

icacls runme.bat

To grant full control of a file to user:

icacls runme.bat /grant u1:F

Domain Management

To add a new user in Domain Enviornment:

net user u1 test@123 /add

To list domain groups:

net group

To add user to "Domain Admin" group

net groups "Domain Admins" u1 /add

To add a user to "Enterprise Admins" group in a domain:

net groups "Enterprise Admins" u1 /ADD /DOMAIN

To add a user to "Domain Admins" group in a domain:

net groups "Domain Admins" u1 /ADD /DOMAIN

To add a user to "Administrators" group in a domain:

net groups "Administrators" u1 /ADD /DOMAIN

To list all domain controllers:

nltest /dclist:domain.com

To check if user is a part of group in a domain:

gpresult /R

Remote Desktop Connection

To connect to a remote desktop

rdesktop -d devnull.com -u u1 -p test@123 192.168.29.18

To check current remote desktop settings:

query session

To logg off remote desktop session:

logoff session_id

Additional Commands

To view all user-related details:

whoami /all

To check user group policies:

gpresult /H report.html