Skip to main content

Articles in this section

Print

Work with user accounts

  • Updated

Work with user accounts

Create a new user

  1. Click the Active Directory administrative unit then click AD Users.

  2. In the Actions menu, click New User.

  3. Enter the new user’s First and Last Name and verify the automatically generated values on the form.

  4. Under Mailbox Type , select either No mailbox, Exchange On-premises or Exchange Remote.

    NOTE: If on-premises Exchange is not configured the options will be No mailbox and Office 365 Mailbox .

  5. Click Next.

  6. Under Account Settings, choose to use the Auto-generated password or click Type Password to enter a new password. Then check the setting boxes to determine the initial state of the account.

  7. Under Organization, enter the additional information if necessary.

    NOTE: In the Hybrid mode, Country/Region will be used as the Usage Location value for the new Office 365 user that will also be created.

  8. Click Create.

Clone (Copy) an existing user

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user or user template to be copied in the search field and click Search or press Enter.

  3. Click the checkbox to the left of the user’s name.

  4. In the Actions menu, click Clone User.

  5. Enter the new user’s First and Last Name and verify the automatically generated values on the form.

  6. Under Mailbox Type , select either No mailbox , Exchange On-premises or Exchange Remote.

    NOTE: If on-premises Exchange is not configured the options will be No mailbox and Office 365 Mailbox .

  7. Click Next.

  8. Under Account Settings, choose to use the Auto-generated password or click Type Password to enter a new password. Then check the setting boxes to determine the initial state of the account.

  9. Under Organization , enter the additional information if necessary.

    10. NOTE: In the Hybrid mode, Country/Region will be used as the Usage Location value for the new Office 365 user that will also be created.

  10. Set Virtual Attributes if they are configured. For more information, please see the Virtual Attributes article.

  11. Click Create.

New Linked Mailbox

  1. Click the Active Directory administrative unit then click AD Users.

  2. In the Actions menu, click New Linked Mailbox.

  3. Specify Linked Master Account.

  4. Enter First and Last Name and verify the automatically generated values on the form.

  5. Under Mailbox Type , select either On-premise, Linked or Remote Linked.

    NOTE: If Remote Linked selected, specify Office 365 license.

  6. Click Next.

  7. Specify Organization details if needed.

  8. Click Create.

New User with Linked Mailbox

  1. Click the Active Directory administrative unit then click AD Users.

  2. In the Actions menu, click New User with Linked Mailbox.

  3. Enter the First and Last Name and verify the automatically generated values on the form.

  4. Under Mailbox Type , select either On-premise, Linked, or Remote Linked.

    NOTE: If Remote Linked selected, specify Office 365 license.

  5. Click Next.

  6. Specify Organization details if needed.

  7. Click Next.

  8. Specify the OU where the master account will be created.

  9. Enter the master account First and Last Name and verify the automatically generated values on the form.

  10. Click Create.

Reset a password

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search or press Enter.

  3. Click the checkmark to the left of the user’s name.

  4. In the Actions menu, click Reset Password.

  5. Under Password , choose to use the Auto-generated password or click Type Password to enter a new password.

  6. Under Email notification , choose not to send the password or click Send to , to enter a new email address of someone who will receive a copy of the user’s new password by e-mail.

  7. Check User must change password at next logon to force the user to change the password.

  8. Check Unlock account if the account is in the locked out state.

  9. Enter a comment that will be recorded in the operational history log.

  10. Click Reset Password.

  11. After the confirmation is displayed, click Close.

Reset a password (Quick Action)

Quick Actions are on-screen features that put the most used features at your finger tips. To enable quick actions in Cayosoft Administrator, click the lighting bolt icon on the toolbar to reveal the quick action pane.


  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search or press Enter.

  3. Click the checkbox to the left of the user’s name.

  4. In the Reset password quick action, enter and confirm a password.

    NOTE: Optionally, click the exclamation mark to generate a complex password.

  5. Check User must change password to force the user to change the password at next logon.

  6. Check Unlock account if the account is in the locked out state.

  7. Click Reset to complete the task.

  8. Click Activities at the top right of the Web Portal to see a confirmation message.

Add a user to a group (Quick Action)

Quick Actions are on-screen features that put the most used features at your finger tips. To enable quick actions in Cayosoft Administrator, click the lighting bolt icon on the toolbar to reveal the quick action pane.


  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search or press Enter.

  3. Click the checkbox to the left of the user’s name.

  4. In the Add to group quick action, enter a group name and click the Search icon.

    TIP: You can add the user to multiple groups by separating the group names with a semicolon;

  5. Verify the group name(s) was displayed below the search field. If the group was not found, try specifying more of the group name and searching again.

  6. Click Add to group to complete the quick action.

  7. Click Activities at the top right of the web portal to see a confirmation message.

Add to groups

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search.

  3. Click the checkbox to the left of the user’s name.

  4. In the Actions menu, click Add to groups.

  5. In the Add user to Group(s) dialog in the search field, enter one or more object names or e-mail addresses separated by a semicolon ;

  6. Click +Add.

    • If more then one object matched the search, click the checkbox to the left of the object’s name.

    • Click Select.

  7. Enter a comment that will be recorded in the operational history log.

  8. Click Add.

Suspend a user

Immediate Suspend

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. In the Actions menu, click Suspend User.

  5. Select Suspend immediately or Suspend on schedule:

  6. Suspend a user (suspend immediately).

  7. Enter a comment that will be recorded in the operational history log.

  8. Click Suspend.

Suspend on Schedule

  1. Select the date and time the user will be suspended.

  2. Enter a comment that will be recorded in the operational history log.

  3. Click Suspend.

Cancel Scheduled Operation

If there is a scheduled suspend operation for the user, you can cancel this operation by clicking Cancel scheduled operation on the Suspend User form.

Undo suspend a user

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. In the Actions menu, click Undo Suspend.

  5. Select the date the user will be un-suspended, or leave the default to un-suspend the user immediately.

  6. Enter a comment that will be recorded in the operational history log.

  7. Click Undo Suspend.

Cancel Scheduled Operation

If there is a scheduled undo suspend operation for the user, you can cancel this operation by clicking Cancel scheduled operation on the Undo Suspend User form.

Move a user

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. In the Actions menu, click Move.

  5. Click Browse.

  6. Enter the name target Organizational Unit (OU) in the search field and click Search Objects.

  7. Click the checkbox to the left of the OU’s name then click OK.

  8. Enter a comment that will be recorded in the operational history log.

  9. Click Move.

Delete a user

TIP: Consider using Suspend User instead of Delete.

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. In the Actions menu, click Delete.

  5. Enter a comment that will be recorded in the operational history log.

  6. Click Delete.

View user properties

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. On the Actions menu, click Properties.

Compare Membership

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. In the Actions menu, click Compare Membership.

  5. Click Change to select Template account.

  6. If the Add and Remove buttons are available for you, you can modify user membership:

    • To copy groups from a template user account to target you should select the groups that only template user has and click Add.

    • To remove groups you should select the groups that a target user has but a template user don't have and click Remove.

Disable a user

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. In the Actions menu, click Properties.

  5. Click the Settings tab at the top.

  6. Check Account is disabled then click Update.

Set smart card required for a user

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. In the Actions menu, click Properties.

  5. Click the Settings tab at the top.

  6. Check the Smart card is required then click Update.

Unlock a user

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. In the Actions menu, click Properties.

  5. Click the Settings tab at the top.

  6. Check Unlock account then click Update.

Disable the Kerberos preauthentication requirement

  1. In the Cayosoft Administrator Web Portal, click the Active Directory administrative unit and select the AD Users web query.

  2. Select a user and click Properties in the Actions pane.

  3. In the Settings tab, select the Do not require Kerberos preauthentication checkbox.

  4. Click Update to save the changes.

Set expiration date for a user

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. On the Actions menu, click Properties.

  5. Click the Settings tab at the top.

  6. Under the Account Expires section click End of.

  7. Click the Calendar icon and select an expiration date.

  8. Click Update.

Set or update a job title or department for a user

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. On the Actions menu, click Properties.

  5. Click the Organization tab at the top.

  6. Type a Job Title or Department for the user

  7. Click Update.

Set or update a manager for a user

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. On the Actions menu, click Properties.

  5. Click the Organization tab at the top.

  6. Click Change to the right of the Manager field.

  7. Enter the manager’s name in the search field and click Search Objects.

  8. Click the checkbox to the left of the manager’s name then click OK.

  9. Click Update.

Remove a user from a group

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. On the Actions menu, click Properties.

  5. Click the Member of tab at the top.

  6. Click the checkbox to the left of the group name(s) from which the user is to be removed then click Remove.

  7. Click Update.

Rename a user

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. On the Actions menu, click Rename.

  5. In the Rename dialog box, change the name as needed.

  6. Click Update.

Authentication Methods

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. On the Actions menu, click Authentication Methods.

  5. Add authentication methods for the selected user:

    • Email

    • Mobile phone

    • Office phone

    • Alternate mobile

    • Temporary Access Pass

  6. Click Update.

AD LDS

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. On the Actions menu, click AD LDS.

  5. Modify AD LDS properties.

  6. Click Update.

OneDrive Properties

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. On the Actions menu, click OneDrive Properties.

    • Specify secondary site collection admins

    • Specify settings:

    • If people outside the organization can access user OneDrive

    • Storage quota in GB

  5. Click Update.

Teams Voice Settings

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. On the Actions menu, click Teams Voice Settings.

  5. Update Teams policies if needed

  6. To update the user a phone number select Update Number

  7. Specify the type of number: Calling Plan, Direct Routing, or Operator Connect .

  8. For the Calling Plan specify Phone number and Emergency Location , and select them from the list.

  9. There are several options for Direct Routing:

    • Enter manually - specify the number manually: copy/paste it from an outside source.

    • From attribute - you can use it if the phone number is specified in the user attribute.

    • Next free in range - select this option to assign the number that will be selected from the rule configured by the administrator.

    • CSV Mapping - select this option to assign the number that will be selected from the rule configured by the administrator.

    • Clear current number - use this option to delete the number.

  10. Click Update.

Calendar Properties

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. On the Actions menu, click Calendar Properties.

  5. For the resource mailbox it is possible to update settings on these four tabs:

    • Calendar permissions

    • Resource delegates

    • Booking requests

    • Booking options

    NOTE: User, shared, and linked mailboxes have only the Calendar permissions tab.

  6. Click Update.

Unix/Linux Properties

  1. Click the Active Directory administrative unit then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the user’s name.

  4. On the Actions menu, click Unix/Linux Properties.

  5. Click Unix- enabled.

  6. Specify UID. Type it or click Generate. The available options depend on the web action configuration.

  7. Also, you can specify Primary Group (GID), Home Directory, Login Shell, and Comment.

  8. Click Update.

Configure delegation in users

IMPORTANT: The Delegation tab is only available if the target user has a service principal name assigned.

Use the Delegation tab in the Properties web action to configure Kerberos delegation for user accounts. Refer to the following steps:

  1. Click the Active Directory administrative unit, then click AD Users.

  2. Enter the name of the user in the search field and click Search Objects.

  3. Click the checkbox to the left of the object name.

  4. In the Actions menu, click Properties.

  5. Select the Delegation tab.

  6. Select the delegation option:

    • To configure unconstrained delegation, select the Trust this user for delegation to any service (Kerberos only) check.

    • To configure constrained delegation, select the Trust this user for delegation to specified services check. Define the authentication protocol and services to define the object and corresponding services. Click OK to save the changes.

  7. Click Update to save the changes.

Change history

Version Notes
13.1 The Properties web action for AD users now features a Delegation tab.
10.0.2 The Calendar permission web action has been renamed and updated.
9.4.0 The Authentication Methods web action has been added.
9.3.0

  1. The operator Connect phone number type has been added to the Teams Voice Settings web action.

  2. A CSV mapping option has been added.

8.4.0 The Teams Voice Settings web action has been introduced in the product.
7.3.0 The OneDrive Properties web action has been introduced in the product.
6.4.0 The Cancel suspend operation has been introduced in the product.
6.3.0 The AD LDS management has been introduced in the product.
   

© Copyright 2013-2026 Cayosoft Inc. All rights reserved.

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request
Return to top

Related articles

Comments

0 comments

Please sign in to leave a comment.