Switching AD sources for users
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-09-2024 07:17 AM
We are currently live with ServiceNow Tokyo importing Users, password etc using LDAP from one AD source.
We have a project in train to decommision our current AD and switch to another, with different attributes for our users , potentially different userids, password and Email addresses.
If we just pointed at the 'new' AD what would be the issues? (I can think of a few)
Assuming we are committed to this approach is there any advice on the transition from one AD source to another?
#integration #AD
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-10-2024 10:55 AM
I'd start with checking the Object GUID. Are you importing that in from LDAP for each user? If not, I'd start with mapping that. It uniquely identifies that user object (name changes, email changes, etc).
If the new AD source is a migration and your users will have the same Object GUID in that environment, you might be in luck and can coalesce on that and the user records should update accordingly (name, email, etc) without having to do any reconciliation.
If the new AD source does not have the same Object GUID for your users. You'd need to map the old Object GUID to a custom field in your new AD source so you can identify who is who without creating all new users and map / transform accordingly.
Hope that makes sense. Good luck.
