Custom Script not working
I have a custom script that does the following: param ($param1) Add-ADGroupMember -Identity VPNUsers -Members $param1 in the custom script field I have: C:\ManageEngine\Scripts\add2group.ps1 %username% The response to the user creation action states: Custom script result : Success and the log states: [11:19:09:074]|[03-06-2020]|[ADMangLogger]|[INFO]|[119]: CustomScriptDetails: {IGNORE_WARNING=false, SCRIPT_COMMAND=PowerShell -file add2group.ps1 'T2atest', SCRIPT_ENABLED=true, MAX_WAIT_TIME=5}| But
Post Termination script remove office365 license, remove from distro
I created a script that goes beyond just what admanager plus offers. This is mainly for hybrid environment. after the account is disabled and moved to disabled OU using template, Script connects to office 365 and removes the disabled user from any distribution list Then it checks for which license the disabled user had and removes the license Script changes the disabled users description field to today's date and time in your local AD It hides the disabled user from Address book on local exchange
Custom Script question
I'm running this custom script inside a template Powershell -ExecutionPolicy Unrestricted C:\ManageEngine\scripts\testname.ps1 %username% Testname.ps1 (powershell script) param($user) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe -noexit -command ". 'C:\Program Files\Microsoft\Exchange Server\V15\bin\RemoteExchange.ps1'; Connect-ExchangeServer -auto " Set-User -Identity $user -RemotePowerShellEnabled $falseBut it seems to be not working. I get "Custom script result: Custom script is running
Modify User Template
Hi, We have recently moved to Exchange 2013 and use AD Manager Plus for our management team. This is working fine and he User Creation template sees and assigns the new Exchange 2013 DAG and relevant database for a new user. However when we use teh Modify User template on the Exchange tab we used to see the server and database but now it shows "choose an exchange server" and "Choose a Mailbox Store". Is there something I have missed here or is there something I need to do to get it to show the server
Re-enable, Move User, Set Expiration Date for Bulk Users
Hello, Wondering if anyone has a solution for this scenario? We automate account creation (bulk) from CSV. Rule is not to create if duplicate on Full Name. Which is good and what we want. However, a large portion of the bulk accounts exist as they are returning students. Some accounts are disabled, moved to a terminated OU , etc.. So I'm looking for a way to: 1) Target only those accounts that already exist ie: those not created and listed as error on the usercreationstatus output of bulk creation
How to unlock locked out AD user accounts automatically using ADManager Plus.
With ADManager Plus, you can configure a scheduler that automatically identifies all the locked out AD user accounts in your domain, and unlocks them. Steps to unlock locked out AD user accounts automatically using ADManager Plus 1. Login to ADManager Plus. 2. Click on the Automation tab and click on the Automation option available on the left pane. 3. Click on Create New Automation. 4. Enter a suitable Automation Name and Description for the automation. (For instance, you can name this automation
How to modify the logon name formats of all existing Active Directory users using ADManager Plus
ADManager Plus enables you to define a custom format for different naming attributes in AD. Once you have created a custom naming format, you can apply it to multiple AD users, at once. Steps to create a custom naming format using ADManager Plus: Let's assume that the new logon name of a user whose FirstName is John and LastName is Smith, must be S.John@domainname.com For this: 1. Login to ADManager Plus and go to the Admin tab. 2. In the Custom Naming Format section, click on Add New Format.
Custom Script not executing.
I have created a custom user creation template that obviously creates the user in both on-prem and O365 as well as some custom attributes necessary in our environment. In addition to these custom attributes there is a script that I would like run after the user is created. This script has the sole purpose of enabling the user account with Multi-Factor Authentication. In tests, while running the same exact script from power shell the script performs all actions as intended without delay and without
Any way to limit O365 Global Admin account other than username / password?
Currently the only way to provision O365 accounts / mailbox through ADMP is via Global admin username / password in the app - UI. Is there any way to lock down the permissions or use Conditional Access to limit access from a single IP or have MFA on the account or use API? Please and thank you.
How to revoke the licenses of inactive Office 365 users using ADManager Plus.
ADManager Plus enables you to generate crucial reports on Office 365 objects like users, groups, contacts, and more. With ADManager Plus, you can revoke the licenses of multiple inactive Office 365 users at once. Steps to revoke the licenses of inactive Office 365 users: Logon to ADManager Plus and navigate to the Office 365 tab. Click on Inactive Users report listed under the Account Status Reports category of the User Reports section. Select the Domain and OUs of your choice. Select the
Import Bulk Manager's in Active Directory
How to import Bulk User Manager's in Active Directory via ADmanager software?
How to enhance your Active Directory (AD) group membership reporting using ADManager Plus
ADManager Plus, a web-based Active Directory (AD) management and reporting solution, also acts as an efficient AD group reporting tool. ADManager Plus offers prepackaged reports that help you list Active Directory groups, get detailed group membership information, and more in just a few clicks. Furthermore, you can perform management operations from within these reports. Detailed Group Members report View the complete list of all the objects that are members of a specific group, and use filters
Notification Macros
Hello, In sending out onboarding notifications, we would like to include IP Phone and Telephone attribute fields. I do not see them in the list. Is there a way to include these?
Non english symbols in first and last name
Hello, Is it possible disallow non English symbols in first and last name in ADM Plus? Regards, Anton
Source Anchor missing ms-DS-ConsistencyGUID in option
We use the microsoft recommended, and supported configuration of using ms-DS-ConsistencyGUID for Sourceanchor and immutableID's in AADsync. We use this configuration because we had multiple forests that were migrated out of, so their objectGUID (what ADManager keys off of by default) is no longer relevant to their ms-DS-consistency guid. This attribute makes it extremely easy to migrate to other forests or domains without having issues with immutableID's. Currently it is impossible to manage these
Email duplicate check
Hello, In my user creation templates I use email field as Unicode string. Is it possible to check duplicates on forest level? Regards, Anton
New Release: ADManager Plus 7030 (October 2019)
We are excited to let you know that the latest version of ADManager Plus--build 7030--has been rolled out. You can download it right away! The details of the release are mentioned below. New Features Over 10 new management operations including Add or Remove Office 365 Group Owners, Modify Calendar Permissions, and more. Over 4 new Office 365 mailbox-based reports. A flat, sleek and intuitive UI for enhanced performance and user experience. Enhancements Option to select templates during bulk group
AD Group Management automation, based on job title or other fields
We currently have a system in place for user creation where help desk technicians use the import functionality in the memberof field to import CSV files filled with groups based on job titles. What we would like to do next is implement some sort of automation that runs periodically and "fixes" any users who have had groups added or removed erroneously. Does anyone have any experience with a solution that looks at users compares their group membership to a template based on job title (or other
Custom Notification Template Variables
I'm attempting to create a notification that goes out to a userID's manager when we disable an account that has been inactive for 90 days. I would really like to use the LDAP attributes in some way so the email is more clear. As an example it would read something like this: ____________________________ Subject: Disabled due to inactivity - %cn% Dear %userManager%, The account for %cn% has been disabled because it has been inactive for 90 days. Last Logon date: %lastLogonTimestamp% Thanks! IT Infrastructure
Creating Templates
Hi Guys, I have created template to disable the user account and move it to anther OU, and also removing specific groups from that account and just keeping one group which is Domain Users Group. The Template is working only with disabling the account and it also moving it to another OU, but its not removing the groups that this account is part of. even I have created a rules for that to keep just one group, and removed the check mark from append with existing value and same thing. Is there any way
Upgrade to Notification Template?
I am new to ManageEngine AD Manager Plus and am finding extreme value in using the Notification Templates. Any feedback on if this will be built out to allow more than the macro fields? When we transfer employees to other departments, we use a paper checklist to ensure all the AD changes were done. If we can add fields such as: %name% %title% %department% %telephoneNumber% %distinguishedName% %physicalDeliveryOfficeName% to templates we can send a email to other admins in the organization that
Bulk User Creation If Statements
Hello, Is it possible to create (and perhaps provide a sample) a powershell script or built-in functionality that would allow for If/Then routines in bulk user account creation? For example, we bulk create hundreds of users from a CSV. However, a large portion of those users may already exist. Therefore, I would like to do something like: 1) Attempt to create user from csv using template if user exists: a) Determine if account is disabled. If Disabled: Re-enable, move to OU
How to Remove Help Desk Technician AD Group
I was performing some experimentation and added an AD Group to Help Desk Technicians. I can not find where to delete the group now. Any thoughts?
Automation data from MS SQL "Ignore current records in DB" greyed out/not working?
Hi, I'm having an problem with importing users from an SQL db into our AD. The first import from the SQL db is ok. But when I run it an second time then I get the error that the object already exists. Why is it doing the same users again? Is this expected behaviour? There is an option by the "Create New Automation" where you have the option to add an marker to the option "Ignore current records in DB". But when I use that option then nothing is getting imported from the SQL db. The job result is
Limit Security Group Assignment to specific OU
If this feature is already available, I would gladly appreciate help in setting it up. Case scenario. in our setup, I have Clients OU that contains a number of individual OUs specific to client (example: Clients -> ClientA, ClientB, ClientC ..etc. ): Within each client OU, there are domain accounts and security groups specific to the client (Clients -> ClientA -> userA1, userA2, userA3, securityA10, securityA20..etc). Using AD manager, I can assign one (unique) technician to each of clients OU to
Creating a new user template - SMTP primary address incorrect in Exchange online
I've setup a new user template which appears to be working well other than the fact that the wrong SMTP address is assigned to the user when I check Exchange Online. The template issues an E3 license and the mailbox is created, but the with an incorrect SMTP mail address. Where should the primary SMTP address be set in the template and are there any custom attributes required? We ARE NOT running in a hybrid environment.
Remove Users from Security Groups (via csv file)
Does AD Manager allow to bulk update user membership via csv load? For instance, I have 10 requests to remove users from particular security groups. Please note that these could be 10 different users and 10 different security groups. I do not want to remove all users from a specified security group. Also, a user might belong to other security groups, so I cannot remove all groups membership for that user. Appreciate any feedback.
Automation Information Needed
I started looking at the automation piece AD Manager Plus for some routine tasks, specifically cleaning up inactive users in our AD and adding Account State locked attribute for reporting. I think I have everything setup correctly but I have a couple of question about using this automation. How does one go about testing their automation? I don’t see a way to stop it from running through the entire tree, and I find it hard to believe ME would think that’s OK. I’m assuming that when we select inactive
error connection exchange in user creation by template
Hi, I create a user in AD per template, I also try to enable remote mailbox with routing address, and I create mailbox in 365. The user creates it well in AD and in 365 it creates the mailbox, but it fails to connect with exchange and can not enable the remote mailbox or add the address. Administrators confirm that the account we use for the connection has permissions in exchange. I have another template that does the same in another domain and makes everything perfect. I pass you log of the errors:
Can ADManager also automate the process of setting user security groups and folder permissions?
Hello, Our agency is currently using ADManager Plus for automating new user account setups. As far as I know we just use it to create the user profile, send user's name to the Brivo badging system and setup the user's email. can ADManager also automate the process of adding security groups and folder permissions during user account creation based on job titles? Right now I have to manually enter the new user's security groups and folder permissions after the user's profile is created via ADManager.
Problem editing GPO
Hello, I am just editing a GPO through ADManager and getting the error I am sending you attached. Could you please help us on this matter?
ADManager Issues...
I am really surprised with my environment after seeing several issues, Is I am the only person facing all these issues\concerns or others too.. I am too curious to see the feedback on the below issues which I am currently facing in ADManager Plus. - Bulk Edit is not working more than 5 groups - Reports are not running for certain conditions - Don't have clear view function for delegation OU details (Refer delegation OU Screenshot) - HA Function (Audit Report Archive Data) is unable to show the results
How to perform Active Directory (AD) user provisioning with a CSV file, using ADManager Plus
As opposed to the native AD tools, ADManager Plus enables you to create multiple Active Directory (AD) users in one go, by importing a CSV file that contains the required user details, without using PowerShell scripts. Rules for creating a CSV file required for bulk user creation: 1. The first row of the CSV file must contain the LDAP names of the AD attributes whose values you wish to set. To view a complete list of all the LDAP attributes that can be specified in a CSV file for user creation or
ADManager Plus Usability \ Features
Do anyone have any other concerns on ADManger Plus like me... - When delegating OU's to specific technician, tech logs in tool only displays Computers etc, Users etc... - Failover \ High Availability is not properly implemented - Lot of usability issues in UI - Role Based OU delegation in single user and group modifications - So far none of my upgrades have been successful, and I am keep getting multiple patches, Simultaneously new patches creating new issues
How to set or modify NTFS permissions using ADManager Plus
ADManager Plus, an AD management and reporting solution, simplifies file server permissions management by offering built-in options to set, modify or revoke NTFS and share permissions of folders. With ADManager Plus, you can not only manage the access rights of multiple folders at once, but also assign granular NTFS and share permissions for individual folders. Prerequisite for setting or modifying NTFS permissions via ADManager Plus: The file server, which hosts the folders whose permissions
Notification for Automation Policy
Hi Guys I created a automation policy and a automtion, which disable, move users they leaving us, 30 days later the users will be deleted. I tried to configure a notification profile for the last step, if the users are deleted. but the notification only works, when i (personally) delete the user. Somebody a idea how to solve this problem? The notification profile has two criterias, 1. when user is deleted 2. from specified ou which the user stays for 30 days before deleting.
Is its possible manageengine integration to confluence tool
Is its possible manageengine integration to confluence tool?? if its possible means guide me how to i proceed it .
AD Domain as first choice in the logon screen
HI, how can i set the active directory domain as the first choice in the logon screen ?
reset the password by an applicant
Hi, Is there any way that when an applicant requests to reset password, or modify user (per template could make one in it to reset the password) and could be executed without another technician's action, for example that the application launch an automation process or configure an automation process to execute the request. Or some other way? Regards,
SQL Versions supported
Hi, We are getting close to a purchase of AD Manager Plus and wanted to confirm whether SQL 2014 is supported. I can see some information about SQL in the user/setup manual but not the exact supported versions. Can anyone confirm?
Next Page