Our organization has FreshService and has already set up Orchestration Center.
AD is on-prem.
Trying to set up an automated Request that gives a user (or group of users) access to an AD Security group(s).
It seems like there should be an out-of-the-box solution for this.
Dont know if it will help, but i saw this one 5 months ago
How to add a user to an AD security group from a sevice request. | Freshworks Community
Thanks BartVB. It looks like the one you referenced is similar, but I am looking for something that can provide a search or pull down to our AD Security Groups, which are many.
The requester would be asking for themselves or that someone else be added to a range of AD Security Groups. Specifically, each of our projects have a unique project number and dedicated security group.
Ultimately, we want to automate the request and assignments to the specific group or groups. I’m told that it can be done but it is somewhat complicated. There would also need to be an approval piece to the Workflow. - Jeff
Hi Joakes
You can set up a custom object with the following fields that would then work. Depending on how dynamic your groups are you may wish to use the Microsoft APIs to update the records automatically.
Group Name (User Friendly) - Make this primary
Object ID
Group Name (AD name)
Then you can use the custom object as a look up in the service request item, and use a read node to find the matching object ID for your workflow. If you want to be really clever you can also add approver(s) as a field in your custom objects so the workflow may automatically assign approvals to the right person before proceeding with the add user command.
I’m looking for some input on this subject of adding new users to On-Prem AD groups.
I have a WF that will create a new AD account, set the pw and move it to the correct OU.
I need to add the account to one or more groups. Currently there are 6 groups to select from. Our Onboarding form uses the multi select drop down so the managers can choose “None Needed” or one or more groups to add their new hire to.
In setting up the Custom Objects, they only have drop down listed and not multi select drop down.
After discussing this with FW, I can’t set this up as I thought I could. I would need to list out every possible combination that could be used. That is not going to work.
Does anyone have any suggestions on how to automate this part or are we stuck doing this the old way, manually?
Thanks in advance for your responses.
Bruce
This is a good case for loops. It drives me crazy I can’t easily loop through a list an do multiple actions like this.
The way I’ve got around it is using an expression, to give me a string output, of the concatenated IDs, and then I can pass that. But that was for adding agents to groups in Fresh no AD OUs.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
