How to bulk update Active Directory User Properties by OU

Required Cayosoft Version: Cayosoft Administrator 4.x and later

Active Directory Version: Server 2012R2 Schema or later

Overview

The Text file | DynamicAttributes™ Update AD Users Properties rule can update user attributes based on the OU (Organizational Unit) in which the user is located with the condition that you are running Active Directory with the Server 2012R2 Schema.

NOTE: You cannot use the distinguishedname (DN) of the user itself, because each DN is unique including both a reference to the user and the parent OU. The Cayosoft rule only works on exact matches so you cannot user DN of the user itself in this case.

Why 2012R2 or later?

In Server 2012R2 a new attribute named msDS-partentdistname was added to objects which contains the distinguished name of the user object. In this case the Cayosoft rule can use this attribute to identify users within a set of OUs. You can test to see if you have this attribute by using the Powershell command:

Get-ADUser -Filter * -Properties msDS-parentdistname | Select-Object DistinguishedName,msDS-parentdistname

Creating a sample file

Here is a 3 line sample CSV file in the format used by Text file | DynamicAttributes™ Update AD Users Properties. You will need to replace the sample OU and address details below with those from your environment.

msDS-parentdistname;physicalDeliveryOfficeName;streetAddress;l;st;postalCode
OU=ANC,OU=GOV,DC=cayodemo,DC=com;Lincoln;100 Lincoln Blvd, Suite 90;Columbus;OH;43210
OU=JAMES,OU=GOV,DC=cayodemo,DC=com;James;100 Maddison Ave;Columbus;OH;43210

Create a rule to update user address properties by OU

1. In the Cayosoft Administrator Console, click New > Rule.

2. Click Show all templates.

3. In the filter type Dynamic.

4. Click the Text file | DynamicAttributes™ Update AD Users Properties rule.

5. Click Next and then Finish.

6. In the Query Section, to the right of the Select Data Source field, click the file picker [...].

7. You can create a new file or click Open to edit an existing one.

8. The sample format above can be used, but will need to be modified for your environment.

9. In the Separator used in file field, select Semi-colon separated ;.

10. To limit the potential impact of this rule, use the Limit scope to this Domain or OU option in the Query section.

11. Click Save Changes.