Adaxes

Import User doesnt set ObjectDN OK if employeeID is src

0 votes

Screenshots below of everything....

I am using a "virgin" install of the latest version tool in a test domain. No special business rules or other customization have been built (yet.)

We would like to use employeeID attribute as the basis of the object DN. (EmployeeID is fixed for "life", user's names and SAM IDs may based on changes in their name. )

I have a (simple) example CSV import file that looks like this: 

cn,sAMAccountname,AccountPassword,employeeID
Timothy Claus,p99995,HoHoLane01,ZZ0022
David Claus,pc99994,JingleBells01,ZZ0024

When I import this, fields are properly identified. However, if I use the "Get name from a column and add parent DN", and use employeeID, when I click "Finish" to begin the wizard I end up with a Dialog box indicating "Can't Locate object".

However, the user(s) is/are created,but as the objectDN (and Canonical Name, ADS path and ) all use the cn field to create the fields, NOT the employeeID as desired. The employeeID attribute does get set (not shown).

Suggestions on how to get this working would be greatly appreciated.

by (40 points)

1 Answer

0 votes
by (216k points)

Hello,

The thing is that in AD, the cn of a user is always used in the user's RDN (Relative Distinguished Name), and always forms a part of the user's DN. In other words, the DN of the user always starts with CN=<cn_value>. Since you have the CN of the users specified in your CSV file, the CN from the CSV file overrides the CN generated based on the employeeID property.

To resolve the issue, you can configure the Import Data wizard not to import the CN from the CSV file. In this case, the DN of the users will be generated based on the employeeID property. However, you should keep in mind that in this case, the Full Name property of the users will be equal to their Employee ID property because Full Name is the same as cn.

To do this, on the 3rd step of the Import Data Wizard, unselect cn in the Properties to import list.

Related questions

0 votes
1 answer
Disable user via Csv if EmployeeID matches

Hello, We are currently trailing Adaxes before purchase, We want to use this to mainly automate our starters and leavers process. Starters seems easy enough, however I ... CSV. Not very experienced with powershell so any help would be much appreciated. Regards

asked Oct 29, 2018 by wayne (70 points)
0 votes
1 answer
Is it possible to have an email sent if a user has been removed from a certain OU?

A little bit of context: There are 3 departments that share 1 Active Directory. Now each department has its own OU. I would like to have an email sent when a user is ... if this is possible without Powershell? If not, is there a pre-existing script for this?

asked Oct 3, 2023 by Cas (150 points)
0 votes
1 answer
When I'm searching for an user if there is a contact and an account, i cannot see directly which one is a contact.

How can i différenciante the two user without opening each one of them ?

asked Jan 20, 2023 by eric.lebrun (20 points)
0 votes
1 answer
How to determine if User is an AD User or Azure AD User?

If we want to obtain the Object ID for the corresponding 365 object of a user, we would use the logic: [Guid]$Context.TargetObject.Get("adm-O365ObjectId") -if ... definitively belongs to an on-premises Active Directory domain or a cloud Azure AD domain?

asked Dec 12, 2022 by Viajaz (210 points)
0 votes
1 answer
Can't authenticate with servers if the user is in the built-in group "Protected Users"

We can authenticate if we login to the machine hosting the service but if I have the client installed on my desktop, I can't authenticate with any ... .com/en-us/windows-server/security/credentials-protection-and-management/protected-users-security-group

asked Sep 12, 2022 by mark.it.admin (2.3k points)
3,355 questions
3,054 answers
7,799 comments
545,152 users