Active Directory User Change Attribute VERSION 1


This handler will use the server information and user credentials configured in the task info values to authenticate and connect to the specified Active Directory server (using LDAP) and search for the user based on the search parameters provided. If User Logon is the 'search by' parameter, the handler looks for a '@' symbol in the User Logon to determine how to search for the User Logon name. A '@' symbol indicates a search for the LDAP attribute userPrincipalName (up to 100 characters) while the absence of the '@' symbol will result in a search for the LDAP attribute sAMAccountName (pre-Windows 2000). Finally, the handler changes the specified LDAP attribute to the new value.

  • If 'Distinguished Name' is selected, the 'distinguishedName' attribute will be used directly to retrieve the User entry.

  • If 'Full Name' is selected, the 'cn' attribute will be used to retrieve the User entry.

  • If 'User Name' is selected, the 'userprincipalname' value will be used if the "Search Value" parameter includes an '@' sign (IE john.doe@domain.com) and the 'samaccountname' will be used if it does not (IE john.doe).

  • If 'Email Address' is selected, the 'mail' attribute will be used to retrieve the User entry.

This handler will fail if the user is not found, or if more than one result is found.


Parameters

NameDescription
Search ByChoose which attribute of the user to search by
Search ValueThe actual search expression to search for
LDAP attributeThe LDAP attribute to change for the specified user
New attribute valueThe new value the specified user will get for the LDAP Attribute parameter

Sample Configuration

NameDescription
Search ByUser Logon
Search Value<%=@answers['ReqFor Login ID']%>
LDAP attributemobile
New attribute value555-555-5555

Results

This handler does not return any results.


Changelog

Active Directory User Change Attribute V1 (2014-08-05)

* Initial version. See README for details.