The following activities are used to access an active directory:
- Add User to Group
- Get Groups from User
Add User to Group
This activity is used to add one or more users to an AD group by their sAMAccountName. Multiple users can be concatenated with ';'. If special permissions for the AD access are needed, a user and a password can be used.
Parameters
Name |
Usage |
Description |
---|---|---|
Username |
|
Username for LDAP authentication |
Password |
|
Password for LDAP authentication |
LDAP connection string |
Required |
LDAP connection string |
Target group name |
Required |
The name of the group where the user(s) should be added. Only one group per activity allowed |
User (Login name) |
Required |
The sAMAccountName user login name. You can state multiple user by concatenating them with ';'. |
Output Error Code |
|
In case of an error this property returns the error code, otherwise this field is empty. |
Output Error Message |
|
In case of an error this property returns the error message, otherwise this field is empty. |
Get Groups from User
This activity returns the groups a user is member of. It either takes the email or the login name of the user. The output of the activity are the groups concatenated by the given delimiter. If no delimiter is given the default is ','. The group name format of the returned groups is sAMAccountName.
Parameters
Name |
Usage |
Description |
---|---|---|
LDAP connection string |
Required |
LDAP connection string |
Username / Email |
Required |
The username or the email adress of an AD user from which to retrieve the groups they are member in. |
Delimiter |
|
The delimiter with which are multiple groups are concatenated. If no delimiter is given the default is ','. |
Result |
Required |
The groups of which the given user is member of. Groups are concatenated via the given delimiter. |
Output Error Code |
|
In case of an error this property returns the error code, otherwise this field is empty. |
Output Error Message |
|
In case of an error this property returns the error message, otherwise this field is empty. |
Get Active Directory Property Value
This activity reads specific values of a user (e.g., display name, given name, mail address) from the Active Directory. The activity must specify the path to the Active Directory as well as a username of an authorized user. The data is returned to a business entity or workflow variable. The property of the active directory to be used is set under output type.