Web Interface Custom Script, Replication Time

Question

Good afternoon everyone,
I have a web form that will create a simple OU with nothing more than a name and description. There next lies a business rule that kicks off a powershell script to generate some additional OU's underneath the one created by the form. Every once in a while the script will be ran against a different domain controller than the domain controller that processed the form create of the original OU.

At this point the script errors out because the root OU that it is creating additional OU's from does not exist because it has not replicated to the other DC.

How can I make sure my script is being ran from the same domain controller that the web interface ran its creation from?

Answer 1

Hello,

You can use the following code to get the DC used by Adaxes for a domain:

$domainName = $Context.GetObjectDomain("<Object_DN>")
$rootDSE = $Context.BindToObject("Adaxes://$domainName/rootDSE")
$domainControllerFQDN = $rootDSE.Get("dnsHostName")

# The $domainControllerFQDN variable contains the DNS host name
# of the DC used by Adaxes for the domain of the object

In the code above, <Object_DN> contains the Distinguished Name (DN) of the AD object for which you want to get the DC for. To get the DC used for the domain of the object on which your Business Rule is executed, specify the %distinguishedName% value reference.

You can pass the DC name you get to Adaxes cmdlets and to cmdlets from the ActiveDirectory PowerShell module using the -Server parameter, for example:

New-AdmOrganizationalUnit -Name "New Organizational Unit" -Path "%distinguishedName%" -Description "My New Organizational Unit" -Server $domainControllerFQDN

Also, consider using Adaxes ADSI interfaces for working with AD objects. Adaxes ADSI always performs the changes via Adaxes Service, which means that you don't need to care about which DC you are connected to. It will always be the DC used by Adaxes Service.

How to use the ADSI API to create an OU under the Organizational Unit on which a rule is executed:

$ou = $Context.TargetObject.Create("organizationalUnit", "OU=New Organizational Unit")
$ou.Put("description", "My New Organizational Unit")
$ou.SetInfo()

For details, see Creating Organizational Units.

Comments

Thank for you for the code snippet. I will use that to get up and running in the short term and shift everything over to the ADSI edit in due time.

Much appreciated, thank you again!!!