I have a process to add/remove users from groups everyday. I currently use Dovestone's AD Bulk Users. It's cumbersome to manage and has limitations. I'd rather use Active Roles instead if possible.
I tried the Synchronization tool, but haven…
Hi,
We're currently working on our user deprovisioning processes and have an issue I am hoping someone can help us with.
We are currently in a hybrid model (on premise AD synced to Azure using AD Connect).
The issue we face is that when a user leaves…
Hi,
I have a scheduled workflow that filters users based on a VA and then searches for users with this VA in a specific OU and then runs some PowerShell scripts for various things.
I've used both of the commands below but neither seems to work, so i guess…
Hi,
We are in the process of setting up ARS and I have a deprovisioning question I hope you can help with, apologies if this has been asked before but I couldn’t find an answer on my search.
We currently deprovision users via a SPML request but…
Hi,
Does anyone know if its possible to change the colour scheme on ARWebAdmin so that we can change the default blue to our company colours?
My goal is to look at the policy applied to an object and pull a value the policy would set.
Specifically, I'd like to pull homePath and homeDirectory out of the Home Folder and AutoProvisioning Policy applied to a user object.
This looks close to…
Hi Team,
My issue is with the script module to send out emails.The objective is to use a secure way to call the password in the script module rather than using plain text password.
I have encrypted the plain text password using the command
$Convertpassword…
We have 19 groups, say if user is added to 3 groups out of those 19. the WF should add that single user to another security group and execute the script or assign 0365 License.
can someone guide me a good approach to achieve this?
I am trying to trigger a workflow so that when a users gets a mailbox created and the x500 writes back to the on-premise account via ADSync it runs a powershell script.
I know the script is fine as i can set the workflow trigger to just modify user and…
Has anyone been able to add hybrid users or AAD users to M365 groups using a workflow or policy in 7.4.5?
The release notes suggested this would be resolved in the latest release but it doesn't look like M365 groups are referenced at all...
Hi,
We are currently setting up ARS 7.4.4 and trying to add a user to a M365 group (cloud only, not synced from on-premise) using a workflow or provisioning policy however we have been unable to get this to work.
Has anyone been able to achieve this without…
Hi,
We are looking to automate our current joiners, movers and leavers process and believe that this can be achieved using the latest version of AR.
We would like to setup AR integration with ServiceNow and then create the following workflows in its…
HI, I would like to add a group by midnight through a script, I know the GUI has the setting to set date and time but how would I do it using a script.
Command:
Add-QADgroupmember -identity "groupname" -member $ADuser (tonight at midnight)
…Hi,
I need Proxyaddress attribute of all users in domain. Since there are multiple values available in this attribute i need either to get each attribute separately in column or search users with one particular value only. for an example i need all users…
Hello,
I'm using Enable-RemoteMailbox cmdlet and I wanted to handle non-terminating exceptions generated by the cmdlet. I searched '-ErrorAction Stop' parameter and used with Enable-RemoteMailbox cmdlet but no luck.
Someone please help me out…
Hello,
I want to create a dynamic group including all computers with a Distinguished Name containing "CRETEIL".
Unfortunately, the membership rule "Computer distinguishedName Contains CRETEIL" doesn't return any items while many computers have…
In the approval notification for when a users account expiration is changed, the client is wanting to show a date when the account will expire, or the number of days until the account expires. The problem is that if we add the AccountExpires attribute…
Welcome to the Active Roles Script Center.
These examples are provided as is, without warranty of any kind, either expressed or implied, including but not limited to the warranties or merchantability and/or fitness for a particular purpose.
If you want…
Hello,
I have two ARS managed domains which are in the same forest. Let's pretend domain1 and domain2.
I also have two groups, domain1\read-domain1 and domain2\read-domain2 which have the rights "All Objects - Read All Properties" respectiv…
I have this script in a workflow and this line fails when I use a variable
set-Qaduser -identity agntest\$usr -ObjectAttributes @{employeetype = $UserEmpType}
If I put text it works fine.
set-Qaduser -identity agntest\$usr -ObjectAttributes @{employeetype…
We use a custom vb script to create a samAccountName (Logon name) for the user upon creation integrated in a policy. The template for the script I found somewhere on the one identity forum. it works well. Now I have found out, that if I want to edit …
Hello,
We have a custom Web Interface that we have setup to easily create user accounts into various OU's. The problem we have is that the "New User" form is shared between all the OU's and not all attributes in the "New User" form are relevant.…
Hello,
First of all, can we undelete the users from recycle bin to actual OU's using any process like Sync Service, workflow, PS script etc, or let me know any othe process to do the process.
I've a requirement to undelete the user object from the…
Hi all,
Does anyone know when active roles 7.4.4 will be released to the public?
We require the ability to write direct to AAD groups as well as create cloud only users and my understanding is that this will be supported in 7.4.4.
Thanks in advance…
In some of the Active Directory Management reports, for example, Directory object management or User attribute management, there is a "Select Action" dropdown for sql expression filters. In the past 6.9 version, there were options like "(Select…
