Windows AD Tasks

This chapter contains the following sections:

Add Computer Object to AD

Summary
Create a new computer object in Active Directory.
Description
This task assigns a computer to a domain and creates a computer object in the Active Directory service (AD). Select generic text with multiline support when mapping the organizational unit (OU) Path field to the Admin Input. The PSAgent and the AD Domain Controller must be in the same domain. The following requirements must be met:
  • The Active Directory Cmdlets module must be installed on the domain controller.
  • The PSAgent and AD must have PowerShell configured with winrm config and must have PSRemoting enabled.
  • The provisioned Windows VM must be powered on.
  • The provisioned Windows VM must have PowerShell configured with winrm config and with PSRemoting enabled.
  • The provisioned Windows VM must be configured with the AD/DNS server IPAddress containing nothing but the AD domain IPAddress that the VM is to to join.
Inputs
Input Description Mappable To Type Mandatory
Power​Shell Agent Select one of the Configured Power​Shell Agent gen_​text_​input Y
Domain Controller Host​Name or IP address of the Domain Controller gen_​text_​input Y
Domain Name Domain Name gen_​text_​input Y
Username User of the Domain Controller gen_​text_​input Y
Password Password password Y
Authentication Type Authentication Type for creating Powershell Session on Domain Contoller gen_​text_​input Y
Maximum Wait Time Max wait time for the command to complete in minutes Y
Computer IPAddress Enter IPAddress of the Computer.​ gen_​text_​input Y
Computer Username Enter User of the Computer.​ gen_​text_​input Y
Computer Password Password password Y
OU path Enter Organizational Unit path that computer need to place in.​ gen_​text_​input Y
Outputs
Output Description Type
OUTPUT_​COMPUTER_​DN Name of the Computer Distinguish​Name that was created by admin gen_​text_​input

Add Computer to Group

Summary
Add a computer to one or more groups.
Description
This task adds a computer to one or more groups in a domain. A sAMAccountName or a Distinguished name can be given as an input for Computer or Group. You can supply multiple group names; the computer is added to all of them. Separate the group names with semicolons.
Inputs
Input Description Mappable To Type Mandatory
Power​Shell Agent Select powershell agent gen_​text_​input Y
Domain Controller Domain Controller gen_​text_​input Y
User Name User Name gen_​text_​input Y
Password Password password Y
Authentication Type Authentication Type gen_​text_​input Y
Domain Name Domain Name gen_​text_​input Y
Maximum Wait Time Max wait time for the command to complete in minutes Y
Computer Name DN or s​AMAccount​Name of the Computer gen_​text_​input Y
Group Name DN or s​AMAccount​Name of the Group gen_​text_​input Y
Outputs
Output Description Type
OUTPUT_​SERVER_​NAME Name of the Server on which the operation is carried out by Admin gen_​text_​input
OUTPUT_​GROUP_​NAME Name of the Group to which the Computer is mapped by Admin gen_​text_​input
OUTPUT_​COMPUTER_​NAME Name of the Computer that was created by admin gen_​text_​input

Add DNS Resource Record in DNS Server

Modify DNS Resource Record in Domain Controller

Summary
Modify a DNS resource record in a domain.
Description
This task modifies a DNS resource record in a Domain. This task is not supported on Active Directory (AD) with Windows Server 2008.
Inputs
Input Description Mappable To Type Mandatory
Power​Shell Agent Select one of the Configured Power​Shell Agent gen_​text_​input Y
DNS Server Host​Name or IP address of the DNS gen_​text_​input Y
Domain Name Domain Name gen_​text_​input Y
Username User Name gen_​text_​input Y
Password Password password Y
Authentication Type Authentication Type for creating the powershell session on DNS Server gen_​text_​input Y
Maximum Wait Time Max wait time for the command to complete in minutes Y
Resource Record Type Select one of the Configured Resource Record Type.​ gen_​text_​input Y
Hostname Enter Hostname.​ gen_​text_​input Y
IPv4Address Enter new IPv4Address of host.​ gen_​text_​input Y
New IPv4Address Enter new IPv4Address of host.​ gen_​text_​input Y
Time to Live(ttl) Enter Time to Live in seconds gen_​text_​input
Outputs
Output Description Type
OUTPUT_​DNS_​RECORD_​HOSTNAME Hostname of DNS ressource record gen_​text_​input
OUTPUT_​DNS_​RECORD_​IPADDRESS IPAddress of DNS ressource record gen_​text_​input
OUTPUT_​DNS_​RECORD_​ALIAS_​NAME Alias name of DNS ressource record gen_​text_​input
OUTPUT_​DNS_​RECORD_​MAILSERVER Mail server name of DNS ressource record gen_​text_​input
OUTPUT_​DNS_​RECORD_​TYPE Type of DNS ressource record gen_​text_​input

Move Computer

Summary
Move an existing computer to a target OU.
Description
This task moves a computer from one organizational unit (OU) to another OU in a domain. A sAMAccountName or a Distinguished name can be given as an input for Computer or Target OU. You can supply multiple computer names; the computers are all moved to the target OU. Separate the computer names with semicolons.
Inputs
Input Description Mappable To Type Mandatory
Power​Shell Agent Select powershell agent gen_​text_​input Y
Domain Controller Domain Controller gen_​text_​input Y
User Name User Name gen_​text_​input Y
Password Password password Y
Authentication Type Authentication Type gen_​text_​input Y
Domain Name Domain Name gen_​text_​input Y
Maximum Wait Time Max wait time for the command to complete in minutes Y
Computer Name DN or s​AMAccount​Name of the Computer gen_​text_​input Y
Target OU Target OU gen_​text_​input Y
Outputs
Output Description Type
OUTPUT_​SERVER_​NAME Name of the Server on which the operation is carried out by Admin gen_​text_​input
OUTPUT_​COMPUTER_​NAME Name of the Computer that was created by admin gen_​text_​input
OUTPUT_​TARGET_​OU_​NAME OU name to which Computer be moved to gen_​text_​input

Remove Computer From Domain

Summary
Remove a computer from a domain.
Description
This task removes a computer from a domain and disables its computer object account in the Active Directory service (AD). The following conditions must be met:
  • Both PSAgent and AD Domain Controller must be on the same domain.
  • Domain Controller must have the Active Directory Cmdlets module available.
  • PSAgent and AD must have PowerShell configured with winrm config and PSRemoting enabled.
Inputs
Input Description Mappable To Type Mandatory
Power​Shell Agent Select one of the Configured Power​Shell Agent gen_​text_​input Y
DNS Server Host​Name or IP address of the DNS gen_​text_​input Y
Domain Name Domain Name gen_​text_​input Y
Username User Name gen_​text_​input Y
Password Password password Y
Authentication Type Authentication Type for creating the powershell session on DNS Server gen_​text_​input Y
Maximum Wait Time Max wait time for the command to complete in minutes Y
Resource Record Type Select one of the Configured Resource Record Type.​ gen_​text_​input Y
Hostname Enter Hostname.​ gen_​text_​input Y
IPv4Address Enter IPv4Address of host.​ gen_​text_​input Y
Create PTR record Select the Checkbox for Creating PTR record gen_​text_​input
Time to Live(ttl) Enter Time to Live in seconds gen_​text_​input
Outputs
Output Description Type
OUTPUT_​DNS_​RECORD_​HOSTNAME Hostname of DNS ressource record gen_​text_​input
OUTPUT_​DNS_​RECORD_​IPADDRESS IPAddress of DNS ressource record gen_​text_​input
OUTPUT_​DNS_​RECORD_​ALIAS_​NAME Alias name of DNS ressource record gen_​text_​input
OUTPUT_​DNS_​RECORD_​MAILSERVER Mail server name of DNS ressource record gen_​text_​input
OUTPUT_​DNS_​RECORD_​TYPE Type of DNS ressource record gen_​text_​input

Remove Computer Object from AD

Summary
Delete a computer object from Active Directory.
Description
This task deletes a computer object from the Active Directory service (AD). The user must select generic text with multiline support when the Computer DN field is mapped to Admin Input. Both PSAgent and AD Domain Controller must be on the same domain. The domain controller must have the Active Directory Cmdlets module. The PSAgent and AD must have PowerShell configured with winrm config and PSRemoting enabled.
Inputs
Input Description Mappable To Type Mandatory
Power​Shell Agent Select one of the Configured Power​Shell Agent gen_​text_​input Y
Domain Controller Host​Name or IP address of the Domain Controller gen_​text_​input Y
Domain Name Domain Name gen_​text_​input Y
Username User of the Domain Controller gen_​text_​input Y
Password Password password Y
Authentication Type Authentication Type for creating Powershell Session on Domain Contoller gen_​text_​input Y
Maximum Wait Time Max wait time for the command to complete in minutes Y
Computer DN Distinuguish Name of computer that need remove from Domain Controller gen_​text_​input Y
Outputs
Output Description Type
OUTPUT_​COMPUTER_​DN Name of the Computer Distinguish​Name that was deleted by admin gen_​text_​input

Remove Computer from Group

Summary
Remove an existing computer from one or more groups.
Description
This task removes a computer from one or more groups in a domain. A sAMAccountName or a Distinguished name can be given as an input for Computer or Group. You can supply multiple group names; the computer is removed from all of them. Separate the group names with semicolons.
Inputs
Input Description Mappable To Type Mandatory
Power​Shell Agent Select powershell agent gen_​text_​input Y
Domain Controller Domain Controller gen_​text_​input Y
Username User Name gen_​text_​input Y
Password Password password Y
Authentication Type Authentication Type gen_​text_​input Y
Domain Name Domain Name gen_​text_​input Y
Maximum Wait Time Max wait time for the command to complete in minutes Y
Computer Name DN or s​AMAccount​Name of the Computer gen_​text_​input Y
Group Name DN or s​AMAccount​Name of the Group gen_​text_​input Y
Outputs
Output Description Type
OUTPUT_​SERVER_​NAME Name of the Server on which the operation is carried out by Admin gen_​text_​input
OUTPUT_​GROUP_​NAME Name of the Group to which the Computer is mapped by Admin gen_​text_​input
OUTPUT_​COMPUTER_​NAME Name of the Computer that was created by admin gen_​text_​input

Remove DNS Resource Record from DNS Server

Summary
Remove a DNS resource record from a domain.
Description
This task removes a DNS resource record from a domain. The following conditions must be met:
  • Both PSAgent and Active Directory (AD) Domain Controller must be on the same domain.
  • Domain Controller must have both the DnsCmd.exe tool (supports Windows Server 2008 but may not support newer versions after 2016) and the Domain Name System (DNS) Server Cmdlets module (supports 2012 and newer).
  • PSAgent and AD must have PowerShell configured with winrm config and PSRemoting enabled.
Inputs
Input Description Mappable To Type Mandatory
Power​Shell Agent Select one of the Configured Power​Shell Agent gen_​text_​input Y
DNS Server Host​Name or IP address of the DNS gen_​text_​input Y
Domain Name Domain Name gen_​text_​input Y
Username User Name gen_​text_​input Y
Password Password password Y
Authentication Type Authentication Type for creating the powershell session on DNS Server gen_​text_​input Y
Maximum Wait Time Max wait time for the command to complete in minutes Y
Resource Record Type Select one of the Configured Resource Record Type.​ gen_​text_​input Y
Hostname Enter Hostname.​ gen_​text_​input Y
IPv4Address Enter IPv4Address of host.​ gen_​text_​input Y
Outputs
Output Description Type
OUTPUT_​DNS_​RECORD_​HOSTNAME Hostname of DNS ressource record gen_​text_​input
OUTPUT_​DNS_​RECORD_​IPADDRESS IPAddress of DNS ressource record gen_​text_​input
OUTPUT_​DNS_​RECORD_​ALIAS_​NAME Alias name of DNS ressource record gen_​text_​input
OUTPUT_​DNS_​RECORD_​MAILSERVER Mail server name of DNS ressource record gen_​text_​input
OUTPUT_​DNS_​RECORD_​TYPE Type of DNS ressource record gen_​text_​input