Remove User from AD Group

drewc · ‎12-12-2016

Is the "Remove User from Group" Active Directory workflow activity available in Geneva? I see "Add User" but not Remove.

Shahed Shah1 · ‎12-12-2016

Hi Drew

The "Remove User from Group" activity was introduced in the Helsinki release. For reference it is listed here in the Helsinki release notes:

Orchestration release notes

Hope that helps

Shahid

View solution in original post

ian_cox · ‎12-12-2016

Here is what I found in the Geneva Product Docs. Active Directory activity pack. I couldn't find a remove user from Group listed.

Shahed Shah1 · ‎12-12-2016

Hi Drew

The "Remove User from Group" activity was introduced in the Helsinki release. For reference it is listed here in the Helsinki release notes:

Orchestration release notes

Hope that helps

Shahid

ian_cox · ‎12-14-2016

Drew, Please let us know if this answered your question we want to make sure you have question answered.

drewc · ‎12-14-2016

Pre-packaged Remove User from Group Active Directory workflow activity is available in Helsinki and beyond.

However, the PowerShell script to run is very simple:

Remove-ADGroupMember -server {Domain Controller IP} -identity {exact name of group} -member {samaccountname of grp member} -Confirm:$false

gotchas:
*make sure that the credentials have enough rights to actually perform the remove

*-Confirm:$false is required since it's automatically running in non-interactive mode

*don't put any double-quotes in the command (contrary to examples found online; once I removed double-quotes, it worked for me); declare variables as strings before the command

example:

$member = "${current.variables.test}"

Remove-ADGroupMember -server {server ip} -identity Test -member $member -Confirm:$false