Has anyone actually mapped out Active Directory with Service Mapping?

jasonbrough
Kilo Expert

As per above. If so, please share any information on how you did it. Thanks

7 REPLIES 7

Can you tell me, which CMDB tables you have mapped OU Information ?

It's a custom table extended from CMDB_CI. At the time we could not find a table that SN provided which would allow for this so we had to create our own. I have not looked to see if SN provides a table now or not. We didn't have and still don't have Discovery, so perhaps that has something in it.

 

And which object of Active Directory you have mapped to create the OU?

I assume you're looking for the definition? This is a screenshot:

TrevorK_0-1720156676313.png

And how you linked user to the OU automatically via AD integration ?

I'm not sure if I understand this correctly but I'll try a general overview. 

 

We capture the LDAP_DN value for each of our users, which ultimately tells us where they reside within AD. With our AD OU import, we know the entire OU structure and can link users to the OU that they reside in with a script on the transform map. All this data is structured very nice and logical, so it's easy to parse it through and get everything linked up. 

Uday Kulal
Tera Contributor

Thank you  Trevor for quick and precise response. This is very helpful.

Is it possible to share the transform script to link the OU object record with User record using the LDAP_DN value.

 

I would like to, however we have deleted that part of the script when our OU structure changed. It's now greatly simplified and mapping users to it has little value (rather than being split apart and quite granular they are sitting in large numbers within a single OU).