PowerShell List Local Administrators on all servers

I needed to list all Local Administrators on all servers at a company as part of a report.

I could not find a good PowerShell script which queried the server to see if it was online, then send a WMI query to enumerate the Local Administrators.

Here is a copy of the script I put together

$serverlist = Get-Content C:\Users\clint-b\serverlist.txt

foreach ($server in $serverlist)

    {

    $ipAddress = $pingStatus.ProtocolAddress;

    # Ping the computer

    $pingStatus = Get-WmiObject -Class Win32_PingStatus -Filter "Address = '$server'";

    if($pingStatus.StatusCode -eq 0)

        {

        Write-Host -ForegroundColor Green "Ping Reply received from $server.";

        $server | Out-File -NoClobber -Append C:\Users\clint-b\localadmins.txt

        $admins = Gwmi win32_groupuser –computer $server

        $admins = $admins |? {$_.groupcomponent –like '*"Administrators"'}

        $admins |? {$_.groupcomponent –like '*"Administrators"'} | fl *PartComponent* | Out-File -NoClobber -Append C:\Users\clint-b\localadmins.txt

        }

    else

    {

    Write-Host -ForegroundColor Red "No Ping Reply received from $server.";

    }

    }

In order to use this script you will need to put together a text file which has all the servers/workstations you want to query.  I used DSQUERY to make this text file but you can use numerous tools.

The text file must have the hostname of each member server on a separate line like:

SERVER1
SERVER2
SERVER3

Under the Out-File section, specify the location of where you want the data to be stored.