How to populate members in AD Directory Users group

Similar Messages

• How to import your MS Active Directory users in an Oracle table

  Hello,
  I first tried to get a Heterogenous Connection to my MS Active Directory to get information on my Active Directory users.
  This doesn't work so I used an alternative solution:
  How to import your MS Active Directory users in an Oracle table
  - a Visual Basic script for export from Active Directory
  - a table in my database
  - a SQL*Loader Control-file
  - a command-file to start the SQL*Loader
  Now I can schedule the vsb-script and the command-file to get my information in an Oracle table. This works fine for me.
  Just to share my scripts:
  I made a Visual Basic script to make an export from my Active Directory to a CSV-file.
  'Export_ActiveDir_users.vbs                              26-10-2006
  'Script to export info from MS Active Directory to a CSV-file
  '     Accountname, employeeid, Name, Function, Department etc.
  '       Richard de Boer - Wetterskip Fryslan, the Nethterlands
  '     samaccountname          Logon Name / Account     
  '     employeeid          Employee ID
  '     name               name     
  '     displayname          Display Name / Full Name     
  '     sn               Last Name     
  '     description          Description / Function
  '     department          Department / Organisation     
  '     physicaldeliveryofficename Office Location     Wetterskip Fryslan
  '     streetaddress          Street Address          Harlingerstraatweg 113
  '     l               City / Location          Leeuwarden
  '     mail               E-mail adress     
  '     wwwhomepage          Web Page Address
  '     distinguishedName     Full unique name with cn, ou's, dc's
  'Global variables
      Dim oContainer
      Dim OutPutFile
      Dim FileSystem
  'Initialize global variables
      Set FileSystem = WScript.CreateObject("Scripting.FileSystemObject")
      Set OutPutFile = FileSystem.CreateTextFile("ActiveDir_users.csv", True)
      Set oContainer=GetObject("LDAP://OU=WFgebruikers,DC=Wetterskip,DC=Fryslan,DC=Local")
  'Enumerate Container
      EnumerateUsers oContainer
  'Clean up
      OutPutFile.Close
      Set FileSystem = Nothing
      Set oContainer = Nothing
      WScript.Echo "Finished"
      WScript.Quit(0)
  Sub EnumerateUsers(oCont)
      Dim oUser
      For Each oUser In oCont
          Select Case LCase(oUser.Class)
                 Case "user"
                      If Not IsEmpty(oUser.distinguishedName) Then
                          OutPutFile.WriteLine _
                 oUser.samaccountname      & ";" & _
                 oUser.employeeid     & ";" & _
                 oUser.Get ("name")      & ";" & _
                 oUser.displayname      & ";" & _
                 oUser.sn           & ";" & _
                 oUser.description      & ";" & _
                 oUser.department      & ";" & _
                 oUser.physicaldeliveryofficename & ";" & _
                 oUser.streetaddress      & ";" & _
                 oUser.l           & ";" & _
                 oUser.mail           & ";" & _
                 oUser.wwwhomepage      & ";" & _
                 oUser.distinguishedName     & ";"
                      End If
                 Case "organizationalunit", "container"
                      EnumerateUsers oUser
          End Select
      Next
  End SubThis give's output like this:
  rdeboer;2988;Richard de Boer;Richard de Boer;de Boer;Database Administrator;Informatie- en Communicatie Technologie;;Harlingerstraatweg 113;Leeuwarden;[email protected];;CN=Richard de Boer,OU=Informatie- en Communicatie Technologie,OU=Afdelingen,OU=WFGebruikers,DC=wetterskip,DC=fryslan,DC=local;
  tbronkhorst;201;Tjitske Bronkhorst;Tjitske Bronkhorst;Bronkhorst;Configuratiebeheerder;Informatie- en Communicatie Technologie;;Harlingerstraatweg 113;Leeuwarden;[email protected];;CN=Tjitske Bronkhorst,OU=Informatie- en Communicatie Technologie,OU=Afdelingen,OU=WFGebruikers,DC=wetterskip,DC=fryslan,DC=local;I made a table in my Oracle database:
  CREATE TABLE     PG4WF.ACTD_USERS     
       samaccountname          VARCHAR2(64)
  ,     employeeid          VARCHAR2(16)
  ,     name               VARCHAR2(64)
  ,     displayname          VARCHAR2(64)
  ,     sn               VARCHAR2(64)
  ,     description          VARCHAR2(100)
  ,     department          VARCHAR2(64)
  ,     physicaldeliveryofficename     VARCHAR2(64)
  ,     streetaddress          VARCHAR2(128)
  ,     l               VARCHAR2(64)
  ,     mail               VARCHAR2(100)
  ,     wwwhomepage          VARCHAR2(128)
  ,     distinguishedName     VARCHAR2(256)
  )I made SQL*Loader Control-file:
  LOAD DATA
  INFILE           'ActiveDir_users.csv'
  BADFILE      'ActiveDir_users.bad'
  DISCARDFILE      'ActiveDir_users.dsc'
  TRUNCATE
  INTO TABLE PG4WF.ACTD_USERS
  FIELDS TERMINATED BY ';'
  (     samaccountname
  ,     employeeid
  ,     name
  ,     displayname
  ,     sn
  ,     description
  ,     department
  ,     physicaldeliveryofficename
  ,     streetaddress
  ,     l
  ,     mail
  ,     wwwhomepage
  ,     distinguishedName
  )I made a cmd-file to start SQL*Loader
  : Import the Active Directory users in Oracle by SQL*Loader
  D:\Oracle\ora92\bin\sqlldr userid=pg4wf/<password>@<database> control=sqlldr_ActiveDir_users.ctl log=sqlldr_ActiveDir_users.logI used this for a good list of active directory fields:
  http://www.kouti.com/tables/userattributes.htm
  Greetings,
  Richard de Boer

  I have a table with about 50,000 records in my Oracle database and there is a date column which shows the date that each record get inserted to the table, for example 04-Aug-13.
  Is there any way that I can find out what time each record has been inserted?
  For example: 04-Aug-13 4:20:00 PM. (For my existing records not future ones)
  First you need to clarify what you mean by 'the date that each record get inserted'.  A row is not permanent and visible to other sessions until it has been COMMITTED and that commit may happen seconds, minutes, hours or even days AFTER a user actually creates the row and puts a date in your 'date column'.
  Second - your date column, and ALL date columns, includes a time component. So just query your date column for the time.
  The only way that time value will be incorrect is if you did something silly like TRUNC(myDate) when you inserted the value. That would use a time component of 00:00:00 and destroy the actual time.

• How to create "folders" in Active Directory Users and Computers?

  Hello Community
      In Windows Server 2008R2 when you go to Active Directory Users and Computer
  you will see icons of folders such as:
      -  Builtin has a folder icon
      - Computers has a folder icon
      - ForeignSecurityPrinicpals has a folder icon
      - Domain Controller as a folder icon
      - Managed Service Accounts has a folder icon
      - Users has a folder icon
      All of the above folders are visually identical.
      If you right click and select “File” –  “New”
   on any of the selections the icon
  will not look like the folder icon they have their own icons which look different
  from the "Folder" icon.
      I would like to create a “Folder” that looks just visually exactly like the ones
  mentioned above, how can I create those types of Folders in Active Directory User
  and Computers?
      Note: I would like to put users in the folders.
      Thank you
      Shabeaut

  Hi,
  you should use OUs (an OU is they type of object (folder) that is available for you to easily create.
  The object type you are asking about is a "container", and there are various reasons why an OU is more flexible (applying GPO, etc).
  Refer: Delegating Administration by Using OU Objects
  http://technet.microsoft.com/en-us/library/cc780779(v=ws.10).aspx   
  and the sub-articles:
  Administration of Default Containers and OUs
  http://technet.microsoft.com/en-us/library/cc728418(v=ws.10).aspx
  Delegating Administration of Account and Resource OUs
  http://technet.microsoft.com/en-us/library/cc784406(v=ws.10).aspx
  Also: http://technet.microsoft.com/en-us/library/cc961764.aspx
  Don
  (Please take a moment to "Vote as Helpful" and/or "Mark as Answer", where applicable.
  This helps the community, keeps the forums tidy, and recognises useful contributions. Thanks!)

• How to clean up the Actice Directory users and account?

  Hi,
  In my workplace we inherited a system which used to be based on Small Business Server, and the Active Directory is filled with User Groups and Containers that the SBS creates itself.
  What is a good rule of thumb/ strategy to use, in order to get rid of the User Groups, Containers and Users that have been created by SBS previously?
  The current structure results in extremely weird behavior applying only a bunch of GPOs to a some users and not to others. I believe this happens due to the extremely complicated structure (which is not needed anymore as we migrated to pure Windows Server
  environment).
  Suggestion, or articles would be extremely welcome.

  Hi theotheisempre,
  if you really had no more SBS Server in your infrastructure, and you also can confirm that there is no Service that used the AD Groups migrated from the SBS anymore, you can remove it. We did this many times and this was very easy. Main Thing is that you make
  sure that you can remove all the Groups / structure step by step from the old SBS environment.  On the other Hand, if your SBS is still in use, don't remove the OU structure nor the Groups.
  While saying that I read about your GPO issue. That does not Sound like a problem related on the SBS OU structure. Please check your policy links, filters and inheritance instead.
  Kind regards,
  Martin 

• How to fix xcodebuild error: The directory /Users/SmilingTornado/ does not contain an Xcode Project

  I am trying to fix my bash but the error: "xcodebuild error: The directory /Users/SmilingTornado/ does not contain an Xcode Project" means that I cant continue to recompile my bash so I have not started the process of patching yet

  OS X bash Update 1.0 – OS X Mavericks

• How to populate data in PAY_PEOPLE_GROUPS table (People Group Flexfiled)

  Hello
  We are migrating the data from one oracle instance to another oracle instance which are in same version of Oralce Applications 11.5.10.2. As a part of migration can anybody let me know how to populate data in "People Group Key Flexfiled" (PAY_PEOPLE_GROUPS table), ideally I will create or update employee records from the source instance to destination instance, so while creating or updating the employee records in can pass people_group_id while calling to the assignment api but my question here is before passing group id to the api i should have the data populated in PAY_PEOPLE_GROUPS TABLE so that i can fetch the group id as per the combination and pass it in to the api.. please suggest...

  Thanks for your information! by any chance do you have any sample code which will create/update assignments with People Group Flexfield; when i check "hr_assignment_api.update_emp_asg_criteria" it only has parameter to pass people group id and not having segments parameters to pass individual segments.
  Also let me know the links if you have any for all HR API guide which will help me to develope the interfaces...
  My requirement is we have two instances in which in one instance we are treating as source for HR which will be used to master for all HR related activities and we are planning to develope an interface which will bring master instance in sync with dummy instance.

• How to only synchronize one specific LDAP user group with SAP?

  Hi,
  Hopefully this is the correct forum to post this in. I want to have continuous one-way synchronization of users from my LDAP server to my SAP central system. I've started configure in SAP using transaction SM59 and LDAP. Can I somewhere set that only one specific LDAP user group shall be transferred to SAP (they do not need to be assigned to any specific group, profile, role in SAP) - or should this be done on the LDAP server side (or is it at all possible)?
  Correct me if I'm wrong, but the User Group field in the report RSLDAPSYNC_USER only concerns SAP user groups right? This would therefore not be sufficient since I want to select the users to synchronize based on user groups in the directory.
  Thanks, Oscar

  We've used a repository constant to specify the LDAP filter for reading users / groups from the LDAP target.
  E.g. LDAP_FILTER_USERS (&(objectCategory=person)(objectClass=user))
  Then we also have a constant for the LDAP_STARTING_POINT
  For our AD Group Initial Load we filter according to these settings:
  LDAP_FILTER_GROUPS = (objectclass=group)
  LDAP_STARTING_POINT_GROUPS = ou=IDMManagedGroups,ou=Groups,dc=cfstest,dc=le,dc=ac,dc=uk
  The above example only reads AD groups starting at the specified OU
  Then in a Job From LDAP Pass the LDAP URL looks like this:
  LDAP://%$rep.LDAP_HOST%:%$rep.LDAP_PORT%/%$rep.LDAP_STARTING_POINT_GROUPS%?*?SUB?%$rep.LDAP_FILTER_GROUPS%
  I hope this helps
  Paul

• How to populate a poplist through a record group?

  Dear People,
  I use forms along with 10g.I have create a record group RG9 with query SELECT DNAME FROM DEPT;.now how to populate it to a list item?.i tried it using a the following code in When_new_form_instance trigger.The code is as follows,
  declare
  a number;
  begin
       a:=populate_group('RG9');
                 add_list_element('block3.list6',1,a,a);
  end;It doesnt throw me any error.but unable to populate data into the list. pls do help me to make corrections in the above code.
  With Regards
  VIDS

  SELECT DNAME,TO_CHAR(DEPTNO) FROM DEPT;This is the format of the query required to populate a list item,
  where the first column value is the one that appears in the list of values
  and the second column value is the one that will get saved in the database or that will be the value of the list item.
  Just try using follwoing in WHEN-VALIDATE-ITEM trigger for list6
  message (:block3.list6)
  The message will be deptno and not the dname
  now values has been populated in the list.but can u explain me whats wrong with my previous query?
  SELECT DNAME FROM DEPT;why dint it help me to pop values in the list?.This query has just one column not as required.
  Hope its clear.

• Wireless Deployment with Active Directory User Group Integration

  I am trying to find out the best practice in deploying a WLAN for users in the cooperate environment, which uses their company active directory integrated laptops to join to the WLAN.
  I know this can be done using certificates easily but I want to just find a way to deploy this without certificates and only based on the AD user group. Maybe a Radius server + LDAP server integration solution would be great.
  Please advice. Thanks.
  Cheers
  Lal Antony
  www.lalantony.com

  The easiest way to deply this is with a Microsoft toolkit, it has everything you need included, manuals, scripts to install and configure server-side components and it's very easy to use. You can get it from here:
  http://www.microsoft.com/downloads/en/details.aspx?FamilyID=60c5d0a1-9820-480e-aa38-63485eca8b9b&displaylang=en
  It's based on Win2003 server but I've been advised by MS that it should be OK on Win2008 as well.

• Looking for:  UA members with Student SAP User Group

  UA Professors in North America:
  Does your campus have an offical SAP student user group, ERP special interest group or similar?  If you do, please post with a brief description of what that group is / does.
  In the next month I would like to organize a conference call for the schools with these SIGs to understand what member schools are doing, how the groups are organized, how the groups are (or are not) affiliated with your SAP initiative on campus, what works / doesn't work for your students and so on.  Students at member schools have more and more interest in starting these groups - and we'd like to be ready to share best practices!  Our colleagues at ASUG are interested in this topic as well, and will join us for the call. 
  Thanks for sharing!
  Best Regards,
  Heather

  Central Michigan University has remained active since Dr. Andera's last post (9/29/10). We fulfilled our goal of visiting Cargil and 3M this past March 2013 in ST. Paul/ Minneapolis.I attached a couple pictures of our visits to 3M & Cargil. It was a very rewarding experience that allowed us to present our program to each company in depth. This trip taught us as group many things. We have also gone to multiple ASUG meetings including Grand Rapids, and Detroit. We are currently invited to the ASUG-Illinois Meeting on Nov 1 at Harper College, and will be hosting an event in the fall here on CMU's campus in Mt. Pleasant, MI. 
  As a group we have weekly meetings including guest speakers and SAP TERP10 training sessions. Our group has now reached 100+ students and continues to grow each year. There are many things we are doing that attract new students.
  For instance, this past year the Information Management Institute here on campus conducted the 1st annual ERPSim. An annual invitation only competition challenging the best ERPsim teams in a competition to determine which team has developed and implemented the best business strategy for the ERPsim Game.  Twenty teams of four students and one mentor competed head-to-head for the Top Honor of ERPsim Champion. The top five teams were rewarded with scholarship money and plaques.
  So to answer your question, Central Michigan University currently has a very active SAP UASUG , and it only continues to grow!
  If you have any further questions, please do not hesitate to ask, I am the president of the group here at CMU and would love to help you. Just email me at [email protected]

• How to hide iviews based on the user groups?

  Hi,
  I have a custom role with workset, page and iviews.
  The page has 5 iviews.
  User group1 can see 5 iviews in the page.
  Now user group2 wants see only 3 iviews in the page (same role).
  Without creating another role for user group2, How can I hide the iviews based on the user group?
  Is this possible?
  Thanks
  Sundar

  Hi Sundar,
  I guess to achieve this, you have to set the permissions at iView level.
  For this, go to System Admin -> Permissions -> Portal Permissions. Now navigate to your iView using the folder structure, do right-click on the iView and click on Open Permissions.
  Search for the particular group and add that and assign the privileges accordingly. You can remove Everyone group from the iView .
  Hope this will solve your problem.
  Regards,
  Saurabh Mathur

• How to Populate Database values in OIM user form

  Hi friends,
  I have created some groups in OIM and I have created a new field in OIM user form. Now i want the group values visible as new field values.
  How the database table values can be made visible in OIM field ..?
  please help me in doing it
  Regards
  sri

  Just follow this document and from fig 13 select LOV type as query.
  http://docs.oracle.com/cd/E21764_01/doc.1111/e14308/conf_mangmnt.htm
  Regards
  Shashank

• How to populate a table whenever the user login?

  Hi People,
  Can u please suggest me what can i do if i want a sequence to be populated in a table namely SAMPLE whenever the user is login into the forms.pls help me to achieve the above requirement.I use forms with oracle 9i.
  Regards
  VIDS

  yes populating in sense i mean values from the sequence shoind be inserted into the SAMPLE table as follows whenever i logon the database through forms.can u pls give me the reply in detail like in which trigger i have to use that built in?.
  SELECT * FROM SAMPLE;
  SNO
  1
  2
  3
  Regards
  VIDS

• Make Open Directory Users/Groups Administrators on Mac clients

  I have setup a OS X 10.8 server with Open Directory and have 2 mac os x mountain lion clients.  I would like for the user accounts I have created in the Open Directory to have admin access to the 2 mac client machines.  How can I do this?  I am new to OS X server.  Is there a Group Policy type equivalent like in Windows? 

  Ah! Thanks! No wonder I cannot do this...
  Unfortunately, the printers are all USB shared printers connected to computers on the network. Is there anyway to preset these printers? They don't show up in the Print manage settings at all.

• Tighter Integration with Active Directory User Groups

  I just wrapped up a Jabber deployment with IM&P 9.1(1) and J4W clients 9.1(3).
  The customer asked me if it is on Cisco's roadmap to allow groups in Active Directory to be pulled into the Jabber client.  The primary business case is to allow those in IT to send out IM blasts to the corporation or certain departments.
  Obviously, this would require a significant amount of development and a much tighter integration with Active Directory, but I need to ask anyway.
  Has something like this been identified and placed on any roadmap?
  Thanks,
  Matthew Berry

  Unfortunately this kind of questions cannot be addressed here, roadmap questions need to go thru official channels for an answer.
  You need to reach your SE/AM for this question.
  HTH
  java
  if this helps, please rate
  www.cisco.com/go/pdihelpdesk