|
|
|||||||
Well... I hope I can fully explain what I want to do. I am getting ready to deploy a LCS (Live Communication Server) and want to add a SIP address to all my user objects in the AD Domain. From some previous posts, I have found how to read the objects details, specifically the SIP address of a User. Code:
However, I was wondering if it's even possible to WRITE the address if it's blank? Any thoughts, comments would be great. Thanks, Chris |
||||||||
|
|
|||||||
I have not tried but cannot see why not. What have you tried? You may need to use the PutEX method. |
||||||||
|
|
|||||||
Les, don't mean to be a pain, but could you give me an example? I am totally new to this type of commands. Chris |
||||||||
|
|
|||||||
See Trouble setting a value to nothing ? |
||||||||
|
|
|||||||
Dude... you freaking ROCK. Code:
|
||||||||
|
|
|||||||
Knowing what to actually search for in this case is difficult if you don't know any correct keywords to use as CLEAR/DELETE/BLANK/ADSI are not very helpful keywords for this. Here are some links from a couple years ago where it came up. http://www.kixtart.org/ubbthreads/showth...page=0&vc=1 http://www.kixtart.org/ubbthreads/showth...page=0&vc=1 Modifying Attributes with ADSI ADS_PROPERTY_OPERATION_ENUM |
||||||||
|
|
|||||||
Quote: I misconstrued. I thought you wanted to write a blank (nothing) address! |
||||||||
|
|
|||||||
Thanks for the help guys... Now I have one more question to kind of go along with this one. Is there a way to enumerate all of my users in a certain OU and add a value to their account? Chris |
||||||||
|
|
|||||||
Yes. |
||||||||
|
|
|||||||
I suppose you want another example. Code: BREAK ON |
||||||||
|
|
|||||||
Thank you for the example... However it isn't working. This is the code that I am using. It'll say it changes it, but when I view it in AD, it's still blank. Code:
Do I have to run it with elevated permissions? HELP!!!! |
||||||||
|
|
|||||||
Quote: Yes, unless you've modified the AD rights (not recommended) normal users can not modify these settings. |
||||||||
|
|
|||||||
Thanks for the response... Tried it with a "Domain Admin" level account and worked fine. I can change my account info, but not anyone elses. Thanks! |
||||||||
|
|
|||||||
Sure you can, but you need to supply THEIR name, not yours. |
||||||||
|
|
|||||||
I guess, I should clarify. Without using the "Domain Admin" level account, I could only modify my ".mail" setting. However using the code above when logged in with the elivated privileges, everything worked fine. I was able to change 195 accounts in like 5 seconds. Much, much easier. But again, thanks for the help. On to the next thread. |
||||||||
|
|
|||||||
Might be time to learn a little bit about Windows security. You sound surprised that you need admin-level privileges to make changes to AD. |
||||||||
|
|
|||||||
Actually some of code, showed that the changes were made, but when I viewed the object in ADUC it contradicted the output from the code, I was just confused. But overall I do feel I have a good understanding, just new to this type of "development". Thanks again for the help guys. Chris |
||||||||
|
|
|||||||
I love Search... I just had to clear the logonscript value for several OUs of users... Code:
|
||||||||
|
|
|||||||
Well... since you are showing me yours, I'll show you mine. This was used to modify the current ScriptPath to reflect the OU medelled folder structure. Code:
|