Hello, we want to setup a scheduled report with all our teams (security groups) and their respective team-leader (specified in "managedBy" of security group).

I get the name of the team-leader in the report, but i also need the attribute "employeeNumber" of the team-leader. And this is my problem...

Can you help me with this problem?

For us to suggest a solution, please, specify how exactly the report is currently generated. If it is generated by a script, please, post the script here or send to us (support[at]adaxes.com).


I copied a default report "objects in OU", so i think it is generated by the following script

# Get parameter values
$objectTypes = $Context.GetParameterValue("param-ObjectTypes")
$scope = $Context.GetParameterValue("param-Scope")
$subtreeScope = $scope -eq "ADS_SCOPE_SUBTREE"

# Custom column identifiers
$ouColumnID = "{44db2afb-5559-4d2f-a1f7-e623e3a6c815}"

# Create a searcher for child objects
$childObjSearcher = New-Object Softerra.Adaxes.Adsi.Search.DirectorySearcher $NULL, $False
$childObjSearcher.SearchParameters.SearchScope = $scope
$childObjSearcher.SearchParameters.ReferralChasing = "ADS_CHASE_REFERRALS_NEVER"
$childObjSearcher.SearchParameters.Filter = "(|" + $objectTypes + ")"
$childObjSearcher.SearchParameters.PageSize = 500

# Add properties necessary to generate the report
$propertiesForOUs = @("objectClass", "objectGuid", "distinguishedName")

# Search filter
$filter = "(objectCategory=organizationalUnit)"

# Generate report
    $searchIterator = $Context.DirectorySearcher.ExecuteSearch()
    while ($Context.MoveNext($searchIterator))
        $searchResult = $searchIterator.Current

        $ouDN = $searchResult.GetPropertyByName("distinguishedName").Values[0]
        $columnValues = @{ $ouColumnID = $ouDN; }

        # Search for child objects
        $hasChildObjects = $False
        $childObjSearcher.SearchParameters.BaseObjectPath = $searchResult.AdsPath
            $childObjSearchIterator = $childObjSearcher.ExecuteSearch()
            while ($Context.MoveNext($childObjSearchIterator))
                $childObjSearchResult = $childObjSearchIterator.Current
                if ($subtreeScope -and ($childObjSearchResult.AdsPath -eq $searchResult.AdsPath))
                    # Subtree scope includes the base object. We don't need the object in the report.

                $hasChildObjects = $True
                # Add the object to the report
                $Context.Items.Add($childObjSearchResult, $columnValues, $NULL)
            if ($childObjSearchIterator) { $childObjSearchIterator.Dispose() }

        if ($hasChildObjects -eq $False)
            # The OU is empty
            if ($styleNoChildObjects -eq $NULL)
                $styleNoChildObjects = $Context.Items.CreateItemStyle("#3d3d3d", $NULL,
            $Context.Items.Add(-1, "<Keine Objekte>", "Information", $columnValues, $styleNoChildObjects)
    if ($searchIterator) { $searchIterator.Dispose() }


Sorry for the confusion, but we are not sure what report exactly you need. Should it only include security groups located in the selected OU and the report columns should display group names, group owners (specified in the Managed By property) and Employee Numbers of the owners?

If that is not so, please, provide all the possible details regarding the desired report with live examples.


You are exactly right. Security Groups in selected OU and in the columns the name of the group, group owner and employeeNumber of the owner.

Thank you for the confirmation. To create the desired report:

  1. Launch Adaxes Administration Console.
  2. In the Console Tree, right-click your service node.
  3. In the context menu, navigate to New and click Report. image.png
  4. Enter a report name and click Next. image.png
  5. Click New.
  6. Click Next twice and then click Finish.
  7. Click Next twice.
  8. In the Report-specific columns section, click Add. image.png
  9. Enter a custom column name (e.g. Owner Employee Number) and click Next. image.png
  10. In the Script field, paste the below script:
$group = $Context.GetADObject()
    $groupOwnerDN = $group.Get("managedBy")
    $groupOwner = $Context.BindToObjectByDN($groupOwnerDN)
    $employeeNumber = $groupOwner.Get("employeeNumber")
    $employeeNumber = $NULL

$Context.Value = $employeeNumber
  1. Click Finish.
  2. Click Next.
  3. In the Search filter field, enter the following:
  1. Click Next and finish creating the report.

Thanks for your help, it works great!

