Adaxes

"The 'member' property cannot be found in the cache." Why is the member property empty on a group?

0 votes

We are attempting to use the member property in a powershell script for all groups. We get this error message on certain groups that are used as "primary". If we set another group as primary for a member of the group, the member property will then "show up"

As you can see, this group we are working with as 442 members. image.png

But the 'member' property just shows the single member in the group in which the group is not the primary.

image.png

by (2.3k points)

1 Answer

0 votes
by (288k points)
selected by
Best answer

Hello Mark,

Primary group membership is neither reflected in the Member Of (in the member properties) nor in the Member (in group properties) attributes. Instead, members get the Primary Group ID property populated with the group identifier that is stored in the Primary Group Token attribute of the group. This behavior is by design in Active Directory and is not related to Adaxes.

According to your screenshots, there is only one member of the Domain Contractors group for which the group is not set as primary. For the rest 441 accounts the group is set as primary and thus they are not present in the Member property, but are displayed on the Members tab as they are members of the group according to the Primary Group ID value in their accounts.

For an example on how to get the Primary Group ID of an account and then use it, have a look at the following script from our repository: https://www.adaxes.com/script-repository/remove-all-group-memberships-for-a-user-account-s33.htm. Should you still have issues updating your script to work as desired, please, provide us with all the possible details on the required script and we will help you.

Related questions

0 votes
1 answer
"The 'userAccountControl' property cannot be found in cache" error.

Error occurs when trying to use SSPR from self-service web interface and from the Windows login screen. Has anyone seen this before? I haven't been able to ... configured exactly how it is laid out here: https://adaxes.com/help/ConfigurePasswordSelfService/

asked Apr 19, 2023 by dhodgin (40 points)
0 votes
0 answers
Why is Adaxes reporting manager as an empty property for Azure Guest Accounts that have a manager populated?

Here is an example: In Azure the manager shows populated: In Adaxes it shows a blank:

asked Dec 2, 2022 by adaxes_user2 (40 points)
0 votes
0 answers
Why users cannot join computers to a domain in Adaxes if KB5020276 is installed?

If a computer has the KB5020276 Netjoin: Domain join hardening changes Windows update installed, you might encounter the following error message when attempting to join such a ... the primary computer owner (specified in the ManagedBy (Primary) property).

asked Jan 20, 2023 by Adaxes (560 points)
0 votes
1 answer
After removing a member from a group - Insert in email notification member country and company property

Hello, I want to include in a sent email notification after removing a member from a group the active directory user property "company" and "co" of a user. How can I achieve this? I can not select a property %adm-membercompany% nor %adm-memberco"

asked Jun 7 by fabian.p (380 points)
0 votes
1 answer
Is there any way to add a warning when adding a group member that is already part of the group?

Is there any way to add a warning message when someone tries to add a group member that already is member? Checked config but found nothing related. Added a new member that ... the group and there is no warning, and the logs show that the task was completed.

asked Jul 9 by lramirez (20 points)
3,541 questions
3,232 answers
8,225 comments
547,802 users