Custom Script not executing.
I have created a custom user creation template that obviously creates the user in both on-prem and O365 as well as some custom attributes necessary in our environment. In addition to these custom attributes there is a script that I would like run after the user is created. This script has the sole purpose of enabling the user account with Multi-Factor Authentication. In tests, while running the same exact script from power shell the script performs all actions as intended without delay and without
Any way to limit O365 Global Admin account other than username / password?
Currently the only way to provision O365 accounts / mailbox through ADMP is via Global admin username / password in the app - UI. Is there any way to lock down the permissions or use Conditional Access to limit access from a single IP or have MFA on the account or use API? Please and thank you.
How to revoke the licenses of inactive Office 365 users using ADManager Plus.
ADManager Plus enables you to generate crucial reports on Office 365 objects like users, groups, contacts, and more. With ADManager Plus, you can revoke the licenses of multiple inactive Office 365 users at once. Steps to revoke the licenses of inactive Office 365 users: Logon to ADManager Plus and navigate to the Office 365 tab. Click on Inactive Users report listed under the Account Status Reports category of the User Reports section. Select the Domain and OUs of your choice. Select the
Import Bulk Manager's in Active Directory
How to import Bulk User Manager's in Active Directory via ADmanager software?
How to enhance your Active Directory (AD) group membership reporting using ADManager Plus
ADManager Plus, a web-based Active Directory (AD) management and reporting solution, also acts as an efficient AD group reporting tool. ADManager Plus offers prepackaged reports that help you list Active Directory groups, get detailed group membership information, and more in just a few clicks. Furthermore, you can perform management operations from within these reports. Detailed Group Members report View the complete list of all the objects that are members of a specific group, and use filters
Notification Macros
Hello, In sending out onboarding notifications, we would like to include IP Phone and Telephone attribute fields. I do not see them in the list. Is there a way to include these?
Non english symbols in first and last name
Hello, Is it possible disallow non English symbols in first and last name in ADM Plus? Regards, Anton
Source Anchor missing ms-DS-ConsistencyGUID in option
We use the microsoft recommended, and supported configuration of using ms-DS-ConsistencyGUID for Sourceanchor and immutableID's in AADsync. We use this configuration because we had multiple forests that were migrated out of, so their objectGUID (what ADManager keys off of by default) is no longer relevant to their ms-DS-consistency guid. This attribute makes it extremely easy to migrate to other forests or domains without having issues with immutableID's. Currently it is impossible to manage these
Email duplicate check
Hello, In my user creation templates I use email field as Unicode string. Is it possible to check duplicates on forest level? Regards, Anton
New Release: ADManager Plus 7030 (October 2019)
We are excited to let you know that the latest version of ADManager Plus--build 7030--has been rolled out. You can download it right away! The details of the release are mentioned below. New Features Over 10 new management operations including Add or Remove Office 365 Group Owners, Modify Calendar Permissions, and more. Over 4 new Office 365 mailbox-based reports. A flat, sleek and intuitive UI for enhanced performance and user experience. Enhancements Option to select templates during bulk group
AD Group Management automation, based on job title or other fields
We currently have a system in place for user creation where help desk technicians use the import functionality in the memberof field to import CSV files filled with groups based on job titles. What we would like to do next is implement some sort of automation that runs periodically and "fixes" any users who have had groups added or removed erroneously. Does anyone have any experience with a solution that looks at users compares their group membership to a template based on job title (or other
Custom Notification Template Variables
I'm attempting to create a notification that goes out to a userID's manager when we disable an account that has been inactive for 90 days. I would really like to use the LDAP attributes in some way so the email is more clear. As an example it would read something like this: ____________________________ Subject: Disabled due to inactivity - %cn% Dear %userManager%, The account for %cn% has been disabled because it has been inactive for 90 days. Last Logon date: %lastLogonTimestamp% Thanks! IT Infrastructure
Creating Templates
Hi Guys, I have created template to disable the user account and move it to anther OU, and also removing specific groups from that account and just keeping one group which is Domain Users Group. The Template is working only with disabling the account and it also moving it to another OU, but its not removing the groups that this account is part of. even I have created a rules for that to keep just one group, and removed the check mark from append with existing value and same thing. Is there any way
Upgrade to Notification Template?
I am new to ManageEngine AD Manager Plus and am finding extreme value in using the Notification Templates. Any feedback on if this will be built out to allow more than the macro fields? When we transfer employees to other departments, we use a paper checklist to ensure all the AD changes were done. If we can add fields such as: %name% %title% %department% %telephoneNumber% %distinguishedName% %physicalDeliveryOfficeName% to templates we can send a email to other admins in the organization that
Bulk User Creation If Statements
Hello, Is it possible to create (and perhaps provide a sample) a powershell script or built-in functionality that would allow for If/Then routines in bulk user account creation? For example, we bulk create hundreds of users from a CSV. However, a large portion of those users may already exist. Therefore, I would like to do something like: 1) Attempt to create user from csv using template if user exists: a) Determine if account is disabled. If Disabled: Re-enable, move to OU
How to Remove Help Desk Technician AD Group
I was performing some experimentation and added an AD Group to Help Desk Technicians. I can not find where to delete the group now. Any thoughts?
Automation data from MS SQL "Ignore current records in DB" greyed out/not working?
Hi, I'm having an problem with importing users from an SQL db into our AD. The first import from the SQL db is ok. But when I run it an second time then I get the error that the object already exists. Why is it doing the same users again? Is this expected behaviour? There is an option by the "Create New Automation" where you have the option to add an marker to the option "Ignore current records in DB". But when I use that option then nothing is getting imported from the SQL db. The job result is
Limit Security Group Assignment to specific OU
If this feature is already available, I would gladly appreciate help in setting it up. Case scenario. in our setup, I have Clients OU that contains a number of individual OUs specific to client (example: Clients -> ClientA, ClientB, ClientC ..etc. ): Within each client OU, there are domain accounts and security groups specific to the client (Clients -> ClientA -> userA1, userA2, userA3, securityA10, securityA20..etc). Using AD manager, I can assign one (unique) technician to each of clients OU to
Creating a new user template - SMTP primary address incorrect in Exchange online
I've setup a new user template which appears to be working well other than the fact that the wrong SMTP address is assigned to the user when I check Exchange Online. The template issues an E3 license and the mailbox is created, but the with an incorrect SMTP mail address. Where should the primary SMTP address be set in the template and are there any custom attributes required? We ARE NOT running in a hybrid environment.
Remove Users from Security Groups (via csv file)
Does AD Manager allow to bulk update user membership via csv load? For instance, I have 10 requests to remove users from particular security groups. Please note that these could be 10 different users and 10 different security groups. I do not want to remove all users from a specified security group. Also, a user might belong to other security groups, so I cannot remove all groups membership for that user. Appreciate any feedback.
Automation Information Needed
I started looking at the automation piece AD Manager Plus for some routine tasks, specifically cleaning up inactive users in our AD and adding Account State locked attribute for reporting. I think I have everything setup correctly but I have a couple of question about using this automation. How does one go about testing their automation? I don’t see a way to stop it from running through the entire tree, and I find it hard to believe ME would think that’s OK. I’m assuming that when we select inactive
error connection exchange in user creation by template
Hi, I create a user in AD per template, I also try to enable remote mailbox with routing address, and I create mailbox in 365. The user creates it well in AD and in 365 it creates the mailbox, but it fails to connect with exchange and can not enable the remote mailbox or add the address. Administrators confirm that the account we use for the connection has permissions in exchange. I have another template that does the same in another domain and makes everything perfect. I pass you log of the errors:
Can ADManager also automate the process of setting user security groups and folder permissions?
Hello, Our agency is currently using ADManager Plus for automating new user account setups. As far as I know we just use it to create the user profile, send user's name to the Brivo badging system and setup the user's email. can ADManager also automate the process of adding security groups and folder permissions during user account creation based on job titles? Right now I have to manually enter the new user's security groups and folder permissions after the user's profile is created via ADManager.
Problem editing GPO
Hello, I am just editing a GPO through ADManager and getting the error I am sending you attached. Could you please help us on this matter?
ADManager Issues...
I am really surprised with my environment after seeing several issues, Is I am the only person facing all these issues\concerns or others too.. I am too curious to see the feedback on the below issues which I am currently facing in ADManager Plus. - Bulk Edit is not working more than 5 groups - Reports are not running for certain conditions - Don't have clear view function for delegation OU details (Refer delegation OU Screenshot) - HA Function (Audit Report Archive Data) is unable to show the results
How to perform Active Directory (AD) user provisioning with a CSV file, using ADManager Plus
As opposed to the native AD tools, ADManager Plus enables you to create multiple Active Directory (AD) users in one go, by importing a CSV file that contains the required user details, without using PowerShell scripts. Rules for creating a CSV file required for bulk user creation: 1. The first row of the CSV file must contain the LDAP names of the AD attributes whose values you wish to set. To view a complete list of all the LDAP attributes that can be specified in a CSV file for user creation or
ADManager Plus Usability \ Features
Do anyone have any other concerns on ADManger Plus like me... - When delegating OU's to specific technician, tech logs in tool only displays Computers etc, Users etc... - Failover \ High Availability is not properly implemented - Lot of usability issues in UI - Role Based OU delegation in single user and group modifications - So far none of my upgrades have been successful, and I am keep getting multiple patches, Simultaneously new patches creating new issues
How to set or modify NTFS permissions using ADManager Plus
ADManager Plus, an AD management and reporting solution, simplifies file server permissions management by offering built-in options to set, modify or revoke NTFS and share permissions of folders. With ADManager Plus, you can not only manage the access rights of multiple folders at once, but also assign granular NTFS and share permissions for individual folders. Prerequisite for setting or modifying NTFS permissions via ADManager Plus: The file server, which hosts the folders whose permissions
Notification for Automation Policy
Hi Guys I created a automation policy and a automtion, which disable, move users they leaving us, 30 days later the users will be deleted. I tried to configure a notification profile for the last step, if the users are deleted. but the notification only works, when i (personally) delete the user. Somebody a idea how to solve this problem? The notification profile has two criterias, 1. when user is deleted 2. from specified ou which the user stays for 30 days before deleting.
Is its possible manageengine integration to confluence tool
Is its possible manageengine integration to confluence tool?? if its possible means guide me how to i proceed it .
AD Domain as first choice in the logon screen
HI, how can i set the active directory domain as the first choice in the logon screen ?
reset the password by an applicant
Hi, Is there any way that when an applicant requests to reset password, or modify user (per template could make one in it to reset the password) and could be executed without another technician's action, for example that the application launch an automation process or configure an automation process to execute the request. Or some other way? Regards,
SQL Versions supported
Hi, We are getting close to a purchase of AD Manager Plus and wanted to confirm whether SQL 2014 is supported. I can see some information about SQL in the user/setup manual but not the exact supported versions. Can anyone confirm?
Needing to get back built in technician accounts
One of our other IT techs accidentally deleted a few of the built in technician accounts from ADManager Plus and I was just seeing if there is a way to get those back or just create other accounts that just are local to the application. The one in particular we need is the built in HR Associate account as we have a few HR reps that will need to create users. Thanks!
AD Manager Plus not launching on Terminal Server
We are running both AD Password Self Service Plus and AD Manager Plus on the same terminal server but recently the Java Wrapper Service will launch at startup on this server for AD Password Self Service plus fine but for AD Manager Plus the java wrapper service doesn't start automatically and when you try to launch it manually it will try to start the service and then goes to "Initializing Service" and then just dies. And Event Viewer doesn't display any warning error messages. The only way to get
run custom script - create 365 account in another domain
Hi, I create a user in AD and then I want to create a 365 account in a domain that is not the same as the AD. For this I configure in the script the connection with administrator username and password 365. If I execute it from the machine by hand it does it well, but once I include it in the ADManager I get the following error: Result:ConvertTo-SecureString : Key not valid for use in specified state. At C:\ManageEngine\ADManager Plus\bin\usernewcomer365.ps1:5 char:17 + $SecureString = ConvertTo-SecureString
pass variable to custom script
Hi, I want to pass the variable "mail of the applicant" in a personalized template, what would the name of the variable be? the same value that is used in the template of notifications by mail Regards,
Java Heap Change Resets
Hi, When I change the value of Java Heap Max in Wrapper.conf it reverts back to the previous setting, what am I doing wrong? Thanks
Send Notification on Disable User
Is it possible to configure a notification profile when an account is disabled through ADManager?
error when requesting to create user by template
Hi, When the "requestor" makes a user registration request by template, the alert message appears: This design does not have a user creation method. This template creates a user in AD and in 365, if I uncheck the 365 tab, let me continue. However, in another template that I have the same but for another domain, it does not give me any warning message and it does it well. What can be eto? Attached screen of the message Regards,
Next Page