Hello
I am wondering if anyone has a solution or ideas on how to use Active Roles to set values for msds-AllowedToDelegateTo attributes (used in Kerberos Delegations ) for an 3rd party application's Active Directory Service account - setting the values…
I need to SET a script scope variable value within a function but it appears that the ARS scheduled task environment command shell does not have these available. Here's a simple script to demonstrate the issue ( if you run this in a powershell or even…
Hello,
I want to create a dynamic group including all computers with a Distinguished Name containing "CRETEIL".
Unfortunately, the membership rule "Computer distinguishedName Contains CRETEIL" doesn't return any items while many computers have…
Hello,
How to get current logged in user through custom script in ARS?
Thanks
Hello,
I've installed the ExchangeOnline powershell package. Through powershell command prompt ExchangeOnline is connecting. When I tried same cmdlet from ARS MMC script module then its not connecting. Here below is the cmdlet I've used.
Connect…
Hello,
I'm have tried below script in policy to uncheck and disable 'Create a mailbox' option in the contact creation wizard but its not reflecting on the screen.
function onGetEffectivePolicy($Request)
{
if($Request.Class -ne "contact"){return…
Hi Guys, Need help. I cannot connect to Active Roles Configuration Center on 7.4. Showing me "Connect failed: path" error message.
Please advice how to troubleshoot this. I tried this solution from this link (https://support.oneidentity.com/kb…
Hello,
I have two ARS managed domains which are in the same forest. Let's pretend domain1 and domain2.
I also have two groups, domain1\read-domain1 and domain2\read-domain2 which have the rights "All Objects - Read All Properties" respectiv…
I have a form where I want to fill out a requester field which is a custom attribute that field will be the SamAccountName of a user would like a way to do a user picker or something. maybe like a java lookup tool.
Hello,
While deprovisioning user object I would like to prompt to enter custom virtual attribute value.
Can anyone please let me know how can it will achieved, do I've to do any level customization Active Roles Console for prompting or any policy helps…
Hello,
I'm having a requirement to stop creating the user in OnPreCreate of powershell script.
If my condition is not satisfied then I have to stop the default user creation.
Thanks in Advance,
Hello community,
i can not run exchange online cmdlets in the script environment of Active Roltes 7.4.3
I use the following code snippet:
$context.O365ImportModules("msonline")
$res = $context.O365ExecuteScriptCmd("get-mailbox test@test…
what are the rights to enable or settings to give access to change history. I have a helpdesk site but as admin I can access change history on objects i would like helpdesk staff to be able to see that.
Hi all,
I am new to One Identity products and possibly looking at purchasing Active Roles to automate new user requests from Service Now but I have a few questions that i hope you can help me with:
Environment
We currently create users on our on premise…
I am running 7.4 and would like to remove a few links from the menu/Views. I was able to see a forum post on Tree but Not Views. Another idea was to get rid of this whole section or collapse and not be able to expand.
Example all i would like is.
I am looking for the syntax or if it's even possible to use the NEW-QARSAccessTemplateLink powershell to apply with a trustee of "nt authority\self". I need to apply some permissions in AD and we prefer to do it all with ARS and sync them…
Hello my Active Roles Server it is running version 7.4.3 with hotfix 330592 installed.
Here the issue, logged in Active Roles Server from ARS Console when I select one group it is configured as Global Security Group, but surprise when I access the ARWebAdmin…
How can I explicitly instruct ARS to execute scripts in PowerShell v7
Hi.
When in-place upgrade procedure is performed then ActiveRoles creates a new database each time ?
When I change current database I get the error -
[InsertArServiceRecord] :Error Generated. Details: System.Data.SqlClient.SqlException (0x80131904): Violation…
Hello.
I need to write a script which provisions a new user account in another application as part of provisioning a new user in ARS. The application has PowerShell CMDLETS for doing this. The application is located in another AD site and frequently the…
Is there a way to specify a friendly name for the service connection point that ARS Administration service creates in AD? We name our servers in a complex way (like aaa-bbb-ccc-###) and it would be nice if I could specify a name like (ars01 or ADManagement01…
I noticed that with Active Roles 7.4.3.and 7.4.1 that the New-QADComputer commandlet is ignoring userAccountControl values. It will only set 4128 PASSWD_NOTREQD
We have a ARS policy that will enforce 4096, and the MMC and WebUI appear to set it, but in…
Hello,
I'm hoping someone can provide any information or experience on syncing a GAL between two Exchange environments.
Right now I am just creating a contact in the target domain using a user account info from the source and giving the contact the…
We continue to see the error described here support.oneidentity.com/.../error-unable-to-uniquely-identify-the-user-using-provided-claims-federation-authentication-with-azure-ad
Our on-prem UPN and AzureAD UPN are different, so we are using the feature…
Is there a way in the ARS web ui to set a virtual attribute boolean value to a default? I have a boolean VA on a web form that isn't populated. Not all users are created by the sync service, so I need this attribute to default to true, regardless…
