Practical Example – Active Directory
Your requirements
You want to delegate the administration of selected user properties and group memberships.
Constant changes to users and groups eat up time
Changes to users and groups are part of day-to-day business.
Such tasks are naturally suitable for delegation. Unfortunately, security requirements stand in your way.
How would it be if Service Desk or the departments themselves could make changes to selected user properties and group memberships – without requiring administrative rights to the Active Directory? The changes must be traceable.
Josh King shows: Manage user properties in Active Directory with ScriptRunner
ScriptRunner Software Download
- 30 days free of charge and without obligation.
- We are happy to support you.
- Change selected user properties
- Manage groups and their memberships
- Secure delegation of these tasks to representatives of the department, service desk or sub-administrators
- Only for assigned subareas and OUs in the Active Directory
- No administrative rights to the AD required
Our solution
ScriptRunner supports the secure delegation of tasks with PowerShell scripts. The users work with their normal user account. The execution of the scripts is controlled by guidelines.
- Ready-made, customizable scripts in the Action Pack for Active Directory and Office 365
- Convenient selection of users, groups, rights
- Display and change user properties, group memberships and rights
- Secure delegation service desk or representatives from the departments
The benefit to you
Changes to users, groups and rights can be securely delegated to authorized third parties. You are relieved of boring routine tasks.
- User properties, group memberships and rights are managed by departments or the service desk
- Faster response times and better compliance with SLAs in user and group management
- Convenient application through automatically generated input forms in the browser
- High security due to separation of rights and guidelines for delegation