Use Case:
Adding or Removing a user from a group is quite common. This process entails redundant work for the IT Department and its time consuming.
This can be automated with ServiceDesk Plus’ in-product capabilities.
Making use of the DRE in ServiceDesk Plus, we can invoke a Deluge script which will add or remove the user from groups in AD using ADManager Plus API.
Steps to set it up:
1. Download the attached scripts.
2. To establish a connection with ADManager Plus, ensure you have the URL where your ADManager Plus is hosted, an Auth Token, and the Domain Name. These serve as prerequisites. Utilizing a global function, you can securely store this information and access it across custom functions as needed.
To create a global function, navigate to Admin > Request Custom Function > Global Functions > New. Configure the global function's return type as 'Map' and insert the contents of the file. Save the global function under a specified name. [File Name: ADMP_Configuration.txt]
3. Go to Admin >> Developer Space >> Custom Function >> Callback Functions >> Copy & paste ADMPGroups_CallBackfunction.txt and save it with a name.
4. Go to Admin >> Incident Template / Service Catalog >> Edit Required Template >> Field and Form Rules >> On Form Load >> Create a new rule. Then, paste the contents of PopulateLoginNamesIntoAdditionalField.txt and save it under a chosen name. For On Form Load, select Execute script, and ensure it applies to Technicians.
5: Navigate to Admin >> Incident Template / Service Catalog >> Edit Required Template >> Field and Form Rules >> On Form Load >> Create a new rule. Copy and paste PopulateADMPGroups.txt, then save it with a specific name. Under On Form Load, select Execute script and set it to apply to Technicians.
6. Make sure to update the callback URL and field name according to your instance in both scripts in Steps 4 and 5.
7. The functional part of the script has to be defined under Admin > Request custom function > Custom Action.
Update the LDAP Field values and SDP Additional field API Field Names in the script. Ensure the LDAPFields and SDPFields are mapped correctly.
7. With custom triggers we can configure criteria such as ‘when a request is created or approved’ to invoke the deluge script stored in the custom function and automatically to add/remove the user from a group in ADMP.
For Adding to a Group:
For Removing from a Group: