Learn when a user was added or removed from AD domain group
Ripped shamelessly from https://learn-powershell.net/2013/05/21/find-when-a- user-was-added-or-removed-to-a-domain-group-using-powershell-and-repadmin/ I was investigating when a user was added to a group the other day, because I completely missed a member of a different team being added to my linux_admins group, which gets full sudo privileges on every GNU/Linux system in the corporate network.
repadmin /showobjmeta dc1 'CN=Domain Admins,CN=Users,DC=example,DC=com'
Comments