Adaxes

Saving the users OU

0 votes

Hi

Using the latest 2018.1 build, I have a user deprovision task which stores relevant information about the user to the custom attributes before disabling and moving it.
I've tried a number of options, but I don't seem to be able to write the users originating OU to their account :|

The best result I can get, is to set custom attribute text 1 to %ou%, as I don't get any errors, but at the end of the event log, there is an entry which says that the first business rule is it clearing this same attribute!

There is nothing in the business rule to do this, it simply sets this attribute and then moves the user to a deprovision user OU for further processing. Any thoughts on why this is happening?

Thanks

Matt

by (2.0k points)
0

Hello Matt,

For troubleshooting purposes, could you post here or send us (support[at]adaxes.com) the following screenshots:

  • A screenshot of the Execution log you get when deprovisioning a user.
  • A screenshot of your deprovision task.
  • A screenshot of the Business Rule that is specified as clearing the custom attribute.
by (294k points)
moved by
0

Hi, I've just emailed you.

Thanks

by (2.0k points)
moved by

1 Answer

0 votes
by (294k points)
selected by
Best answer

Hello Matt,

Thank you for the provided details. You see clearing the custom attribute in the Execution log because the ou property is empty for the user. This behavior is by design.

To save the distinguished name of the container where the user is located before it gets moved to another location, use the %adm-ParentDN% value reference. Your action will look like the following:

0

Brilliant, I shall give it a go.

So the %ou% attribute isn't used by Adaxes for anything?

by (2.0k points)
moved by
0

Hello,

Actually, the ou property is used to store the name of an Organizational Unit. It is not automatically populated for users unlike for OUs. You need to set the property value manually if required. This behavior comes from Active Directory, not Adaxes. You can check details about this property in the following article by Microsoft: https://msdn.microsoft.com/en-us/library/cc221049.aspx.

by (294k points)
moved by
0

Thanks for the info.

by (2.0k points)
moved by
0

Just to confirm, using the %adm-ParentDN% attributed worked a treat.

Thanks as always for your help :D

by (2.0k points)
moved by

Related questions

0 votes
1 answer
Query that returns users with a certain string in their OU?

I need to create a group that contains all users who are in OUs that have a certain string in the name. For example, if an OU has "Admin" in the name, add all users in the OU to a group. Is this possible?

asked Dec 17, 2024 by akindy (40 points)
0 votes
1 answer
How can i only let users see what is under a specific OU

so i have Move user action in this action i will let help desk to move users in specific OU's i want to do like this let say if user is inside OU 1 i have OU ... can only see user object inside one of Shift OU , how can i accomplish that? Any professional ?

asked Dec 5, 2024 by vagifazari (450 points)
0 votes
1 answer
[ANSWERED] UPN suffix after user creation , Automatically set UPN based on user's OU

Hi i have created a business role in that role if user is created a specific OU it will do everyting , generate password create email in specific DataBase , but i cannot find how to ... BA , according to this ou user should get @ba.com UPN , how can i do that?

asked Nov 29, 2024 by vagifazari (450 points)
0 votes
1 answer
How can I exclude users in a specific OU from object selection for 'Delete User' ?

Hi there, I've created a Delete User feature in the Web Interface Configurator. I am trying to restrict object selection via a User Criteria. Need to exclude Service ... won't appear when selecting target user for the 'Delete User' feature. Thanks, David

asked Sep 19, 2024 by dshortall (80 points)
0 votes
0 answers
Adaxes not moving users to correct OU

The past week all my scheduled tasks to move users to specific OU's have stopped working. For example I have a scheduled task set up which moves a user to an OU called " ... , but when looking via AD this doesn't reflect what the logs/task say. Any ideas?

asked May 2, 2023 by Homelander90 (350 points)
3,594 questions
3,281 answers
8,315 comments
548,246 users