Hi,
I'm using Active Roles 7.5 and I'm looking for assistance on creating a workflow (on demand or automated) where the trigger isn't initiated within an Active Roles operation. We have our computers sorted into Operating system and type…
Hi,
I'm using Active Roles 7.5 and I'm looking for assistance on creating a workflow (on demand or automated) where the trigger isn't initiated within an Active Roles operation. We have our computers sorted into Operating system and type…
Hello ARS experts,
We have a need to make employeeNumber a default search criteria in the webportal when adding a user to a group. I see that you can add the criteria for searching one person. Although if allowing the search to default to employee number…
Hi All,
We recently decided to delete several thousand inactive accounts - we are now being told this is causing issues with Application historical records as the usernames are now being recycled.
We are planning to stop this by building either an LDS…
Hello All,
I don't see a way to do a ldapfilter for edsaDGOriginatingService. It seems to not work. I can use some virtual attribute to do ldap filter but this one is not working.
We have over 8k Dynamic groups and I need to just filter those that…
I've opened a support request up with One Identity already but wanted to see if anyone here has seen this yet. October client patches from MS have a domain join hardening update. In a nutshell if the account doing the join to an existing object in…
Hi
i discovered Extended Controls a while ago in Active Role Web Gui and i thought that might be a good way to control code but i guess i havent really thought about using it with onGetEffectivePolicy.
Hi
I have an installation of Active Roles at one of our clients and the preferred language is in Danish in the web interface. Now we would like to change the label text on the deprovision command in the action pane to the right when selecting an individual…
Is it possible to force users to authenticate using a Username and password to login to any of the AR web interfaces
I am trying to setup the approval by primary owner workflow for group membership change. However, it didn't seem to work and I am hoping to get some help here. This is a new AR 7.4.3 setup without too much customization.
What I did
Defined the primary…
Hi,
I'm trying to write a script that will check the build the Uniqueness value of the cn attribute and then set the UPNPrefix (edsaUPNPrefix) attribute to the CN. I understand that the normal way is just to set a uniqueness value at the end of the SAM…
Hello
My goal is to limit the number of members added to a group, for example: I have a group with 4 members, and I set a limitation value of 5 (the value is set in extension attribute 1)
I created a workflow with the operation: “add member to group…
Hello,
I have a Active Roles sync job that creates AD accounts in the workflow. I know there is a way to send a step handler to send email notification on the completion of the step. I need to be able to generate a report of all the accounts created in…
Hello,
I'm having a requirement, we created couple of Virtual attributes in Active Roles and if we change a value of VA1 and then dynamically update the value of VA2.
VA1 - Dropdown field
VA2 - String field
Do let me know if you need more information…
I supposed this request applies to any task executed through SPML request. I am looking to provide our help desk an easy way to mass delete workstations matching a specific stale/idle day range.
Until an API is ready for primetime, I'm testing spml delete…
I used a script to confirm availability of the SPML provider and operational status by returning attributes of an object from all 4 configured ARS SPML hosts.
Powershell query to return data works ... however the customer team uses VMWare Orchestration…
Hi
In a customer environment, I just upgraded ARS to version 7.5 from 7.4.3 with the in-place upgrade method on a 2019 server. My next planned step was to add the Azure tenant in the Configuration Center but the login page turned up blank. I've tried…
Hi,
I replaced our Admin and Sync service account recently because the old one kept locking, and since then I've been having problems with the Backsync. I've been able to set up mappings to Users, and a new connection. The backsync appears to…
Hi
We have enabled delegate access via Active Roles for our service desk team.
They have full control over all objects in AD however they are unable to rename domain joined computers due to permissions.
Does anyone know if there is a permission in ARS…
Hello,
we are using Automation workflow within Active roles to do some bulk updates. Workflow setup is very simple, it's only calling function from the powershell script library (ScriptLibraryWorkflowFunctions.ps1) and generating the Run history.
S…
Hi,
We have created a VA and published it to a field on the web admin portal.
Additionally we have a policy that validates the length and format of that VA.
{4 required [0-9]}
The issue we are seeing is that if we browse to that VA via the web admin portal…
Hi
I am trying to take the output of a VA, modify the format using a script and then setting a custom attribute based on the output of the script.
I can get the script to run in PowerShell if i select the following:
$mobile = "07702986412)
$mobilenumber…
Hi,
We are trying to create a VA with a mobile number so that a workflow is triggered and sets the number in AD.
The issue we face is the formatting of the number, see below:
Original VA: 07702874158
Transformed Value to set in AD: +44 7702 874158
Hi
I would like to know if it's possible to set a default value for all users so that the Active Roles 7.5 self service web portal page will automatically show objects owned by inheritance or secondary ownership. We found the checkbox and saw that it…
Have created a scheduled Workflow that searches for accounts that have the employeetype = contractor, and accountexpires > 90 days or accountexpires is empty. When the workflow is run, it successfully finds the accounts that have accountexpires > 90…
I have a script which queries a SQL table I created to add new users to a selected AD group on creation.
The table originally had 1 column - AD Group Name, which returned all possible groups for the helpdesk to select from in a dropdown list in the web…