Criteria for User Account overwrite in Active Directory User Imports

Criteria for User Account overwrite in Active Directory User Imports

While performing a user import from Active Directory,  


Criteria 1: ObjectGUID - If the ObjectGUID of a user account in ServiceDesk Plus MSP matches with the user account in Active Directory, then the record in ServiceDesk Plus MSP will be overwritten.

 

Criteria 2: Login name and Domain - If the login name and domain of a user account in ServiceDesk Plus MSP matches with the user account in Active Directory, then the record in ServiceDesk Plus MSP will be overwritten.

 

Criteria 3: Email address - If the 'Override based on EmailId' option is enabled under Admin>> Self-Service Portal settings and if the email address of the user account in ServiceDesk Plus MSP matches with the Active Directory user account, then the record in ServiceDesk Plus MSP will be overwritten.

 

Criteria 4: Login name and domain is '-' (not associated) - If a user account in ServiceDesk Plus MSP contains only a login name with an email address without a domain association and if the login name matches with the Active Directory user account, then the record in ServiceDesk Plus MSP will be overwritten.


When a user is imported from AD, the ObjectGUID of the user is used as a unique identifier to update the user details in ServiceDesk Plus MSP. If the 'ObjectGUID' does not match for any user in ServiceDesk Plus MSP,

  • The 'loginname+domainname' of the user is used as an unique identifier to update the user details in ServiceDesk Plus MSP.

  • If the 'loginname+domainname' does not match for any user in ServiceDesk, the 'email address' of the user will be used as a unique identifier.

  • If the email address does not match, then the 'loginname + domain=NULL'  ( where loginname is Howard (example) and domain name is NULL) is used as a unique identifier to update user details. 

In cases where none of the specified conditions like 'ObjectGUID' , 'loginname+domainname', 'email address','loginname + domain=NULL' are absent in ServiceDesk Plus MSP , a new user will be added.

                  New to ADSelfService Plus?

                    • Related Articles

                    • Active directory unable to sync

                      Error in logs : Error trace : 15:24:14:746]|[02-09-2022]|[com.adventnet.servicedesk.asset.discovery.IpUtil]|[INFO]|[640]: Java PING Result for the workstation : 10.64.72.13. Result of ping : false.| ...
                    • ADMP Integration - How to automate unlocking of user accounts in Active Directory

                      This post described the use of a python script to automate unlocking of user accounts from request. This script can be configured under Request custom triggers and you will find more information about this here. Integrating ServiceDesk Plus with ...
                    • How to configure SAML with Azure AD

                      This guide will help us configure SAML for users who want to use Azure AD as their IdP and also give you insights on a few issues that you might run into while configuring SAML in an Azure Environment. In an ideal environment, customers will have an ...
                    • ADMP Integration - Enable or Disable an User Account

                      Use Case:   Automate the acitvation and deactivation of user accounts in your organization's Active Directory (AD) using a single Deluge script. Each time a request is created using a specific template, you can invoke the Deluge script to enable or ...
                    • ADMP Integration - How to automate AD user creation

                      This post described the use of a python script to automate AD user creation from request. This script can be configured under Request custom triggers and you will find more information about this here. Integrating ServiceDesk Plus with ADManager Plus ...