Adaxes

How can I create a scheduled task to remove all group memberships of a user after the account is disabled?

0 votes

Currently, when I disable a user account in Adaxes, the group memberships of the user remain intact. I'd like to automate the removal of group memberships such as distribution lists and security groups from the user after I disable his/her account. I want to set it up with email notifications that shows a list of groups/DL that the user was previously in and removed from. Thanks!

by (20 points)

1 Answer

0 votes
by (262k points)

Hello Jayden,

To automatically remove a user from all the groups after disabling their account, you need to use a Business rule triggering After disabling a user account. In the rule, use the following script from our repository: https://www.adaxes.com/script-repository/remove-all-group-memberships-for-a-user-account-s33.htm.

However, if a user is disabled outside of Adaxes (e.g. using Active Directory Users and Computers), the business rule will not trigger. For such cases, you can use the script in a scheduled task like below: image.png

0

Thank you! I have a quick question, for the script that sends an email notification, how should the format of this line be?

'$to = "recipient@domain.com"' I tried doing '$to = "recipient1@domain.com", "recipient2@domain.com"' and when I disable a user account, only recipient2 gets the notification email..

by (20 points)
0

Hello Jayden,

The line should be like below:

$to = "recipient1@domain.com, recipient2@domain.com"
by (262k points)

Related questions

0 votes
1 answer
How can I remove membership from all shared mailboxes of a user when disabled?

https://www.adaxes.com/script-repository/remove-all-group-memberships-for-a-user-account-s33.htm I found this script but it only removes 365 groups, security groups, and ... user from all shared mailboxes they are a member of when disabling a user. Thanks!

asked Sep 8 by silicondt (60 points)
0 votes
1 answer
How can I set up a scheduled task to run, but only once instead of against all objects?

The script create two reports of inactive workstation operating systems. The report is too detailed to run from one of the adaxes reports. Basically how can I set the script up to ... sure How I did this but I can't find it now (probably something simple).

asked Nov 30, 2022 by mightycabal (890 points)
0 votes
1 answer
Remove User Groups from User with account expires after one month with a scheduled task

Hello! how do i manage do get adaxes to remove all groups from the user after one month? We have a Business Rule where you can add an end of Date when the Account ... value field the powershell script works but not with the +1 Month. Thanks for your help!

asked Jun 14 by eww ag (140 points)
0 votes
1 answer
Is it possible to generate a report of all of the business rules carried out on a user when they are disabled?

I'd like to be able to either send an email report or export a CSV of all of the business rules carried out when a user is disabled. This would be ... Management Activity section but this includes things that weren't part of the disable operation. Thanks

asked Feb 19, 2020 by bavery (250 points)
0 votes
1 answer
On the built in Create User, how can I get the ability for the user to choose a different domain in the username field?

Using this built in function: There is no option to change the domain on the user account, however this is not the domain we use for UPN. However after creating a user, you can change it but trying to avoid going back into the object.

asked Apr 14 by mightycabal (890 points)
3,231 questions
2,932 answers
7,499 comments
535,364 users