Adaxes

Import User doesnt set ObjectDN OK if employeeID is src

0 votes

Screenshots below of everything....

I am using a "virgin" install of the latest version tool in a test domain. No special business rules or other customization have been built (yet.)

We would like to use employeeID attribute as the basis of the object DN. (EmployeeID is fixed for "life", user's names and SAM IDs may based on changes in their name. )

I have a (simple) example CSV import file that looks like this: 

cn,sAMAccountname,AccountPassword,employeeID
Timothy Claus,p99995,HoHoLane01,ZZ0022
David Claus,pc99994,JingleBells01,ZZ0024

When I import this, fields are properly identified. However, if I use the "Get name from a column and add parent DN", and use employeeID, when I click "Finish" to begin the wizard I end up with a Dialog box indicating "Can't Locate object".

However, the user(s) is/are created,but as the objectDN (and Canonical Name, ADS path and ) all use the cn field to create the fields, NOT the employeeID as desired. The employeeID attribute does get set (not shown).

Suggestions on how to get this working would be greatly appreciated.

by (40 points)

1 Answer

0 votes
by (216k points)

Hello,

The thing is that in AD, the cn of a user is always used in the user's RDN (Relative Distinguished Name), and always forms a part of the user's DN. In other words, the DN of the user always starts with CN=<cn_value>. Since you have the CN of the users specified in your CSV file, the CN from the CSV file overrides the CN generated based on the employeeID property.

To resolve the issue, you can configure the Import Data wizard not to import the CN from the CSV file. In this case, the DN of the users will be generated based on the employeeID property. However, you should keep in mind that in this case, the Full Name property of the users will be equal to their Employee ID property because Full Name is the same as cn.

To do this, on the 3rd step of the Import Data Wizard, unselect cn in the Properties to import list.

Related questions

0 votes
1 answer
Disable user via Csv if EmployeeID matches

Hello, We are currently trailing Adaxes before purchase, We want to use this to mainly automate our starters and leavers process. Starters seems easy enough, however I ... CSV. Not very experienced with powershell so any help would be much appreciated. Regards

asked Oct 29, 2018 by wayne (70 points)
0 votes
1 answer
Create group on account creation if it doesn't already exist

Hello, When a user account is created, we would like for that user to be added to a group whose name is based on a certain naming convention. If the group doesn't yet exist ... If that group doesn't exist, it will first create the group and then add the user.

asked Mar 11 by sjjb2024 (60 points)
0 votes
1 answer
What is the most current way of checking if a user has MFA enabled in Azure?

We used to use a script to check if an AD user's MFA was set in Azure (Hybrid AD/AAD set up). I do not think it is relevant any longer. Is there another script that handles this or some other functionality in order to check a user's Azure MFA status?

asked Aug 23 by msheppard (470 points)
0 votes
1 answer
Is it possible to have an email sent if a user has been removed from a certain OU?

A little bit of context: There are 3 departments that share 1 Active Directory. Now each department has its own OU. I would like to have an email sent when a user is ... if this is possible without Powershell? If not, is there a pre-existing script for this?

asked Oct 3, 2023 by Cas (200 points)
0 votes
1 answer
When I'm searching for an user if there is a contact and an account, i cannot see directly which one is a contact.

How can i différenciante the two user without opening each one of them ?

asked Jan 20, 2023 by eric.lebrun (20 points)
3,548 questions
3,238 answers
8,232 comments
547,813 users