is there an "easy" way to add a user to all group within his OU or we need to use a script for that ?

In fact it was pretty easy to do that with a really short script :

Import-Module Adaxes
Import-Module ActiveDirectory

#retrieve OU from user DN
$ou = "%distinguishedName%" -replace '^(.*?,OU)', 'OU'

#Add user DN to all group within $ou
$group = Get-ADGroup -SearchBase $ou -Filter * | Add-ADGroupMember -Members "%distinguishedName%"

Some times the script fails with the error directory object not found.

I think this is because my script may attempd to check the new user on a DC which is not replicated yet, and the information about the new utilisateur is missing.

Is it possible to retrieve the name of the DC on which the user are created ? (so i would be able to specify the DC in the script)

Hello Alexandre,

The following script will do the job:

Import-Module Adaxes

$domain = $Context.GetObjectDomain("%distinguishedName%")
$rootDse = $Context.BindToObject("Adaxes://$domain/rootDSE")
$dc = $rootDse.Get("dnsHostName")

Get-AdmGroup -SearchBase "%adm-ParentDN%" -Filter * -Server $dc | Add-AdmGroupMember -Members "%distinguishedName%" -Server $dc

Hi Adaxes,

It seems it is working properly now. Thanks.

