Isso deve começar você.
Foreach($Policy In Get-ChildItem \$((Get-ADDomain).DNSRoot)\sysvol\$((Get-ADDomain).DNSRoot)\Policies)
{
Get-GPO -Guid $Policy.Name | Select *
# Now you have an individual GPO. Do something useful with it.
#
# DisplayName : Terminate Idle and Disconnected RDP Sessions
# DomainName : CONTOSO.COM
# Owner : CONTOSO\Domain Admins
# Id : f8858a61-91b4-4d1f-8d64-be6fa0252680
# GpoStatus : AllSettingsEnabled
# Description :
# CreationTime : 1/20/2014 11:57:50 AM
# ModificationTime : 6/3/2014 10:02:38 AM
# UserVersion : AD Version: 0, SysVol Version: 0
# ComputerVersion : AD Version: 4, SysVol Version: 4
# WmiFilter :
# Computer : Microsoft.GroupPolicy.ComputerConfiguration
# User : Microsoft.GroupPolicy.UserConfiguration
}
Edit: Duhhh Eu fiz da maneira mais difícil, em vez de usar apenas Get-GPO -All
. :)