ADMP Integration - Add/Remove users from Groups

ADMP Integration - Add/Remove users from Groups

Use Case: 
Adding or Removing a user from a group is quite common.  This process entails redundant work for the IT Department and its time consuming.

This can be automated with ServiceDesk Plus’ in-product capabilities.

Making use of the DRE in ServiceDesk Plus, we can invoke a Deluge script which will add or remove the user from groups in AD using ADManager Plus API.


Steps to set it up:

1.  Download the attached scripts.  

2. To establish a connection with ADManager Plus, ensure you have the URL where your ADManager Plus is hosted, an Auth Token, and the Domain Name. These serve as prerequisites. Utilizing a global function, you can securely store this information and access it across custom functions as needed.
To create a global function, navigate to Admin > Request Custom Function > Global Functions > New. Configure the global function's return type as 'Map' and insert the contents of the file. Save the global function under a specified name. [File Name: ADMP_Configuration.txt]





3.  Go to Admin >> Developer Space >> Custom Function >> Callback Functions  >> Copy & paste ADMPGroups_CallBackfunction.txt and save it with a name.

4. Go to Admin >> Incident Template / Service Catalog >> Edit Required Template >> Field and Form Rules >> On Form Load >> Create a new rule. Then, paste the contents of PopulateLoginNamesIntoAdditionalField.txt and save it under a chosen name. For On Form Load, select Execute script, and ensure it applies to Technicians.

5: Navigate to Admin >> Incident Template / Service Catalog >> Edit Required Template >> Field and Form Rules >> On Form Load >> Create a new rule. Copy and paste PopulateADMPGroups.txt, then save it with a specific name. Under On Form Load, select Execute script and set it to apply to Technicians.

6.  Make sure to update the callback URL and field name according to your instance in both scripts in Steps 4 and 5.

7. The functional part of the script has to be defined under Admin > Request custom function > Custom Action. 
Update the LDAP Field values and SDP Additional field API Field Names in the script. Ensure the LDAPFields and SDPFields are mapped correctly.

7. With custom triggers we can configure criteria such as ‘when a request is created or approved’ to invoke the deluge script stored in the custom function and automatically to add/remove the user from a group in ADMP.
For Adding to a Group:




For Removing from a Group:




                  New to ADSelfService Plus?

                    • Related Articles

                    • ADMP Integration - Modify User Attributes (Department, Manager)

                      Use Case:  Modifying User Attributes for a user account in AD can be automated with ServiceDesk Plus’ in-product capabilities. Making use of the DRE in ServiceDesk Plus, we can invoke a Deluge script which will unlock the user account in AD using ...
                    • ADMP Integration - Delete an User

                      Use Case:  While resigning an employee, the HR department sends the employee’s details to the IT department via email. IT department in turn, will delete the employee from the Active Directory.  This process entails redundant work, its time ...
                    • ADMP Integration - Unlock an User

                      Use Case:  Automatically unlock user accounts in ADManager Plus when a ticket is raised in ServiceDesk Plus for the same.  All you have to do is, invoke a Deluge script to unlock the user using ADManager Plus API. Steps to set it up: 1. To connect ...
                    • ADMP Integration - Password Reset for a user account

                      Use Case:  Frequent calls to the help desk to reset their account password, are quite common. This process entails redundant work, its time consuming. This can be automated with ServiceDesk Plus’ in-product capabilities. Making use of the DRE in ...
                    • ADMP Integration - Auto create User Accounts in AD

                      Use Case:   In many organizations, the employee onboarding process requires the Hiring Manager to send the employee details to the IT team, who will add the employee to the organization's Active Directory. This time-consuming, human error-prone ...