At the moment I'm really struggling to figure out how to add functionality into self service. 

We have a specific OU called "Distribution lists - SITE" and what I would like is to allow X amount of users to edit/change/remove membership into those…

We have a basic script that opens a connection to ARS from within our PowerShell scripts. The script was provided by our Active Directory team and basically searches for ARS SCPs in AD, gets a list of those connection points, extracts the ARS server names…

Active Roles 7.2.1 public hotfix, KB 247276, is now available on the Support Portal:

https://support.oneidentity.com/kb/247276

This hotfix package address several issues with both Active Roles and the Sync Service.

The Active Roles 7.2 Language Pack is now available for download here:

https://support.oneidentity.com/active-roles/7.2/download-new-releases

Moving objects around in AD can cause major issues especially with LDAP based applications which always seem to , hard code the object DNs.
ARS Managed Units allow you to virtualise an AD OU Structure making it simpler to delegate rights and also provides…

Hi All,

can someone please help me, by telling me were in Event viewer I can find the logs for user creation and de-provision. to be digested by Rapid 7.

Thanks,

David

Hi,

We are considering upgrading our AD schema from Windows 2012 R2 to Windows 2016. Will ActiveRoles 7.2.1 support this schema? Which (older) versions of ARS do not support it? We are currently at ARS 6.8 and would like to have a safe upgrade.

Russell

We recently updated 2 servers to patch 4 for ARS 6.9 and since then, when attempting to reset passwords of users using the ARS MMC or web interface, the password reset dialog hangs and the session becomes unusable. This can be remedied by resetting the…

I have a bunch of O365 Distribution Groups that I used to bring down into ARS via the sync tool.  The issue is whenever I add someone to the group it doesn't update in O365.  When I add someone to the managed by field it doesn't update the owner field…

Hello,

We just upgraded to 7.2 and seem to be having some dynamic group issues.

Object are not getting added to dynamic groups right away as they were in 6.9.

An object will get added instantly when you create the object in ARS but when created in AD…

Hi all,

I am using Active Roles 6.9 and have two servers.

I also use 1IM Identity management 6.1.4 and wanted to relieve some windows throttling  (On my AR server) by load balancing ( round robin or something).

I would need to use the load balanced DNS…

Hello,

I just upgraded to Active Roles 7.2 and trying to run a powershell script module with SQL cmdlets.

The cmdlets runs fine from ISE but I cannot get them to run from the script module.

I even run Import-Module SQLPS in the script module. This was…

We are upgrading from 6.9 to 7.2. It seems that our functions in IsCommandAvailable.vbs  is erroring out at 'allowedAttributesEffective = objCommandContext.DirectoryObject.GetEx("allowedAttributesEffective")' command  with error 'Class…

Hello,

    It is time for us to upgrade our old Quest One Active Roles environment to the latest version.  AR 6.9.0 is running on Server 2008R2, and I would like to build the 7.2 environment on Server 2016.  Active Roles DB is running on SQL 2012, currently…

We have a postcreate script (powershell) that we run to set permissions for a users home directory. I am attempting to convert the script from using the users samaccountname to use the users sid. The problem is that from the $Request I am only able to…

Hi all!

I need to dynamically find all attributes modified in function onPreModify($Request).

I do NOT want to something like:

function onPreModify($Request)

{

if ((IsAttributeModified "edsva_myattribute" $Request) -eq $true)

        {
            #do something…

I can run this in Powershell no issues, would appropriate any help.  I am writing how many days left until an account expires to a VA.

THE CAUSE
$Expiration = (([datetime]::FromFileTime((Get-ADUser –Identity $user -Properties "msDS-UserPasswordExpiryTimeComputed…

       I am rebuilding our 6.9 ARS installation and have a question about Templates. During the original engagement my predecessor copied the templates he was going to use in a MyCompany container and didn't make use of the default templates. Is this a standard…

We would like to use Synch Service to update user's group membership from a SQL DB, instead of manually adding groups. We get the below message and found a KB article that says to create a virtual attribute for each group, but this workflow will apply…

When creating an account in ActiveRoles and then creating that same account in the tenant, where is the password stored?  Is it also stored in the tenant?  If it is, what process updates that password if the synchronization service is not setup to sync…

 Hey guys,

is it possible to give a user-group permissons (eg PW-reset) on all user in another user-group? Further we need do design this delegation dynamic.

An example:

All members of the group "APW123" can reset the password for each user, that is member…

I would like to create a managed unit to find Inactive users, I know there is a workflow that can search inactive users.  I was thinking a managed unit with a custom search but not sure.

I am recreating all my site and want to know how to remove breadcrumbs and the tree view Tab in the new web interface in version 7.2

Hello,

i am trying to help a customer troubleshooting their production issues, customer has asked for a reference architecture.  Customer has around 20+ Managed Unite, 1000+ Dynamic Groups and close to 200 ARS administrators. The MUs & Dynamic Groups spans…