powershell - What default credential Directory Entry binds to if it is running as a service on Windows -

if bind directoryentry ( without arguments) on application mode search users @ current domain, see logged in in user default credential directoryentry since finds users domain. that, expect won't work if application run @ service mode since account service system not user of domain. code still works , users of logged in user domain.

i did search on internet, didn't find answer on when running service. idea? way default credential @ power shell?

at service mode, default credential directory entry credential computer used login domain (called computer login). see link: https://serverfault.com/questions/61191/what-happens-when-a-computer-joins-an-active-directory-domain.

i first tried use system.net.credentialcache::defaultnetworkcredentials try default credential, found out user , domain blank. confirmed msdn not view info returned networkcredentials.

so added following vb script (got base code link: http://blogs.technet.com/b/heyscriptingguy/archive/2008/05/12/how-can-i-determine-the-distinguished-name-of-the-ou-where-the-logged-on-user-s-user-account-resides.aspx) called power shell dn of current user , save file.

set objsysinfo = createobject("adsysteminfo") strusername = objsysinfo.username set objuser = getobject("ldap://" & strusername) wscript.echo objuser.distinguishedname set objfs = createobject("scripting.filesystemobject") strtemp = "c:\temp\dn.txt" set objoutfile = objfs.createtextfile(strtemp,true)     objoutfile.write(objuser.distinguishedname) objoutfile.close 

then when ran in service context, found out user computer itself, this:

cn=my computer name,ou=domain computer accounts,dc=domain,dc=local