Criteria for User Account overwrite in Active Directory User Imports

Criteria for User Account overwrite in Active Directory User Imports

While performing a user import from Active Directory,  

‚Äč

Criteria 1: ObjectGUID - If the ObjectGUID of a user account in ServiceDesk Plus MSP matches with the user account in Active Directory, then the record in ServiceDesk Plus MSP will be overwritten.

 

Criteria 2: Login name and Domain - If the login name and domain of a user account in ServiceDesk Plus MSP matches with the user account in Active Directory, then the record in ServiceDesk Plus MSP will be overwritten.

 

Criteria 3: Email address - If the 'Override based on EmailId' option is enabled under Admin>> Self-Service Portal settings and if the email address of the user account in ServiceDesk Plus MSP matches with the Active Directory user account, then the record in ServiceDesk Plus MSP will be overwritten.

 

Criteria 4: Login name and domain is '-' (not associated) - If a user account in ServiceDesk Plus MSP contains only a login name with an email address without a domain association and if the login name matches with the Active Directory user account, then the record in ServiceDesk Plus MSP will be overwritten.


When a user is imported from AD, the ObjectGUID of the user is used as a unique identifier to update the user details in ServiceDesk Plus MSP. If the 'ObjectGUID' does not match for any user in ServiceDesk Plus MSP,

  • The 'loginname+domainname' of the user is used as an unique identifier to update the user details in ServiceDesk Plus MSP.

  • If the 'loginname+domainname' does not match for any user in ServiceDesk, the 'email address' of the user will be used as a unique identifier.

  • If the email address does not match, then the 'loginname + domain=NULL'  ( where loginname is Howard (example) and domain name is NULL) is used as a unique identifier to update user details. 

In cases where none of the specified conditions like 'ObjectGUID' , 'loginname+domainname', 'email address','loginname + domain=NULL' are absent in ServiceDesk Plus MSP , a new user will be added.
      • Related Articles

      • Active directory unable to sync

        Error in logs : Error trace : 15:24:14:746]|[02-09-2022]|[com.adventnet.servicedesk.asset.discovery.IpUtil]|[INFO]|[640]: Java PING Result for the workstation : 10.64.72.13.  Result of ping : false.| ...
      • How to configure SAML with Azure AD

        This guide will help us configure SAML for users who want to use Azure AD as their IdP and also give you insights on a few issues that you might run into while configuring SAML in an Azure Environment. In an ideal environment, customers will have an ...
      • Setting up Active directory domains in SDP-MSP to manage users.

        We can set up multiple domains from Active directory for each account to import and manage users or share a single domain to multiple accounr. 2 types of domain can be added.  1. Account specific domain. 2. Shared domain. Account Specific domain: 1: ...
      • Import additional fields from the Active Directory.

        1.) You may need to first add additional fields under Admin\Users Additional-Fields \Common Additional-Fields if not already done. 2.) The configured additional field will appear in the "Import from Active Directory" window under Admin \ Active ...
      • AD Sync issue_Rootpath failure

        Error trace: 09:48:46:989]|[10-31-2019]|[com.adventnet.servicedesk.asset.util.WorkStationDiscoverUtil]|[INFO]|[62064]: Log message from WMI task : mwc-dc-01 - LDAP Search : Root Path Failure.  (0x8007052e)| ...