In this guide, you’ll learn how to move a computer object from one OU to another. This is a great step to automatically moving computers or servers to the correct group using Powershell, instead of manually moving them.

Step 1: Delegate Control of an OU in Active Directory

Before you can move a computer object to a different OU, you first need to delegate permissions to the specific user. To do that:

  1. Open Active Directory Users & Computers from a domain controller.
  2. Right-click the OU > Delegate Permissions.
  3. Click “Add” to add the user.
  4. On the Tasks to Delegate screen, click the “Create a custom task to delegate” radial.
  5. Click the “Only the following objects in the folder” radial.
    1. Check “Computer Objects.”
    2. Check Create Selected objects in this folder
    3. Check Delete selected objects in this folder.
  6. Check the WRITE box and click Next.

That’s it! You can now move computers objects to the specified OU from the default parent OU.
You can test this by opening ADUC on your local computer and manually moving an object. If it works, that means it’ll work once you run the Powershell script below.

Create Powershell Script to Move Computer Objects to a Different OU

By default, objects that get added to Active Directory go to the parent Computers OU:

For this example, I want newly created computer objects to move from from the default Computers OU to the Domain>Computers>Computers OU:


To do that with Powershell, you can use a script like this. It will prompt you to enter a computer name. Capitalization matters here.

$ComputerObject = Read-Host "Type computername to move"
Move-ADObject –Identity "CN=$ComputerObject,CN=Computers,DC=domain,DC=com" -TargetPath "OU=Computers,OU=Computers,OU=domain,DC=domain,DC=com"

Move Computer Object from Sub OU to Different OU

Move Computer Objects to Disabled Computers OU

If your computer object is already moved into a specific OU, and you want to move it somewhere else (such as a Disabled Computers OU, you can use a script like this:

$ComputerObject = Read-Host "Type computername to move to DisabledComputers OU"
Move-ADObject –Identity "CN=$ComputerObject,OU=Computers,OU=Computers,OU=Domain,DC=domain,DC=com" -TargetPath "OU=DisabledComputers,OU=Domain,DC=domain,DC=com"

Wrapping Up

Hopefully this guide helped you learn how to move one object to another OU or group with Powershell!

My Homelab Equipment

Here is some of the gear I use in my Homelab. I highly recommend each of them.

The full list of server components I use can be found on my Equipment List page.

Hey there! I'm Danny, owner and writer of Smart Home Pursuits. I've worked as an IT Manager for 8 years and enjoy using my knowledge to make my smart home "smarter".

Similar Posts

Powershell Script to Open Multiple URL’s in a Browser

Powershell Script to Open Multiple URL’s in a Browser

ByDanny

If you’re looking for a simple one-line Powershell script to open a webpage (or multiple webpages), then this tutorial will work perfectly for you. I use this script to open several URL’s during our new hire deployment in a brand new Chrome browser window. For example, when a new employee starts, we typically have to…

How to install Snippet Box in Docker
| |

How to install Snippet Box in Docker

ByDanny

In this guide, I’m going to show you how to install Snippet Box in a Docker container. Snippet Box is an application that lets you organize your code snippets. You can add things docker-compose configs, Powershell scripts, batch files you run, your Homer dashboard configuration, or any other snippets of code you’d like to store…

Powershell Script to Delete Download Folder Contents for All User

Powershell Script to Delete Download Folder Contents for All User

ByDanny

In this guide, I’m going to show you how to delete the contents of a users’ Downloads folder using a simple Powershell script. This script is especially useful to use on a Windows Server 2019 Terminal Server or rdweb host server. Understandably, running a script across all users on a server can be scary, so…

Leave a Reply

Your email address will not be published. Required fields are marked *