Automate HR AD User attributes and import in OnPremise AD

%3CLINGO-SUB%20id%3D%22lingo-sub-2355905%22%20slang%3D%22en-US%22%3EAutomate%20HR%20AD%20User%20attributes%20and%20import%20in%20OnPremise%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2355905%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%3C%2FP%3E%3CP%3EI%20have%20a%20requirement%20to%20extract%20the%20DN%20of%20the%20members%20from%20Domain%20local%20Group%20and%20members%20are%20from%20trusted%20domain(remote)%20as%20the%20company%20merged%20so%20it%20is%202%20separate%20Forests.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20need%20to%20update%20the%20users%20attribute%20in%20the%20Domain1%20with%20HR%20database%20CSV%20file%20and%20also%20the%20members%20DN(Foreign%20Security%20Principal)%20from%20the%20Domain%20Local%20Group%20for%20the%20manager%20Attribute%20to%20be%20populated.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIs%20there%20a%20script%20that%20can%20be%20executed%20as%20scheduled%20task%20so%20the%20CSV%20file%20is%20imported%20in%20AD%20for%20updating%20the%20users%3F%20Set-Aduser%20and%20Get-aduser%20comes%20to%20mind%20but%20any%20tested%20solution%20for%20automation%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESimilar%20to%20the%20config%20highlighted%20in%20this%20thread%20I%20am%20looking%20to%20implement%20as%20well.%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fsocial.technet.microsoft.com%2FForums%2Fwindows%2Fen-US%2Fb9a23ef0-374e-4d87-8fc9-d9475825d926%2Fcant-assign-user-attribute-across-a-forest-trust%3Fforum%3DwinserverDS%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fsocial.technet.microsoft.com%2FForums%2Fwindows%2Fen-US%2Fb9a23ef0-374e-4d87-8fc9-d9475825d926%2Fcant-assign-user-attribute-across-a-forest-trust%3Fforum%3DwinserverDS%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%2C%3C%2FP%3E%3CP%3EM%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2355905%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EWindows%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EWindows%20PowerShell%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EWindows%20Server%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2356851%22%20slang%3D%22en-US%22%3ERe%3A%20Automate%20HR%20AD%20User%20attributes%20and%20import%20in%20OnPremise%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2356851%22%20slang%3D%22en-US%22%3EWhat%20is%20DN%2C%20Destinguage%20Name.%20Based%20on%20what%20I%20know%2C%20you%20cannot%20update%20this.%20It's%20a%20read-only%20value.%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2357104%22%20slang%3D%22en-US%22%3ERe%3A%20Automate%20HR%20AD%20User%20attributes%20and%20import%20in%20OnPremise%20AD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2357104%22%20slang%3D%22en-US%22%3EJust%20check%20the%20link%20I%20provided%20I%20am%20trying%20to%20implement%20similar%20solution%20but%20with%20updating%20manager%20attribute%20from%20different%20forest.%3C%2FLINGO-BODY%3E
New Contributor

Hi,

I have a requirement to extract the DN of the members from Domain local Group and members are from trusted domain(remote) as the company merged so it is 2 separate Forests.

 

I need to update the users attribute in the Domain1 with HR database CSV file and also the members DN(Foreign Security Principal) from the Domain Local Group for the manager Attribute to be populated.

 

Is there a script that can be executed as scheduled task so the CSV file is imported in AD for updating the users? Set-Aduser and Get-aduser comes to mind but any tested solution for automation?

 

Similar to the config highlighted in this thread I am looking to implement as well.

https://social.technet.microsoft.com/Forums/windows/en-US/b9a23ef0-374e-4d87-8fc9-d9475825d926/cant-...

 

Thanks,

M

2 Replies
What is DN, Destinguage Name. Based on what I know, you cannot update this. It's a read-only value.
Just check the link I provided I am trying to implement similar solution but with updating manager attribute from different forest.