This AgileShape can be used to remove user(s) from a group in AD. The group or user name(s) can be a real name, custom attribute, or schema.
NOTE: If errors occur during the execution (e.g. if the user or group does not exist in AD), the process will terminate and a message will be written into the AgilePoint Server log file.
NOTE: This AgileShape is a specialized sub-type of the AgilePart AgileShape. Refer to the documentation for the AgilePart AgileShape for additional information about the properties and behavior that this sub-type inherits from the AgilePart AgileShape.
Design-Time Properties
Context
Specifies the AD properties.
Context Domain
The domain name.
Username
The username of the account to be used to create a group in AD at run time.
Password
The password of the account to be used to create a group in the domain at run time.
Directory Type
The AD type (LDAP/WinNT). At this time, only LDAP is supported.
Directory Address
Specifies a host address of the AD.
Directory Port
Specifies a port number of the AD. By default, it is 389. In the case of a remote domain, the port should match the port of the remote domain server.
Secure Connection
In this version, the SSL is not supported; it will be an enhancement in the future.
Debug
Default value: False
This property determines whether the AgileShape will log additional progress and debugging messages to the AgilePoint Server log file at runtime. This property can be set to the following specific values:
- False
This value indicates that the AgileShape will not log additional progress and debugging messages to the AgilePoint Server log file at runtime.
- True
This value indicates that the AgileShape will log additional progress and debugging messages to the AgilePoint Server log file at runtime. These messages are often helpful in verifying that the AgileShape is functioning properly and/or with troubleshooting any problems or suspected problems with the AgileShape’s runtime behavior or configuration.
LocationType
Specifies the AD Services Interface provider type. At this time, only LDAP is supported.
RemoveUserFromGroup
Specifies the information for user name and group to be removed from AD. When you need to remove multiple users, the user names should be separated by a semicolon.
IMPORTANT: The Context property must be completed before configuring the RemoveUserFromGroup property.
NOTE: If the process template has an associated schema, the Schema button will appear under the Search button.
NOTE: If the domain configured in context property cannot be accessed at design time, the Search button will not be available.
There are several ways to specify group names to be removed from AD:
- Enter the Group Name and User Name(s) manually.
- Click the Search button and select the Group Name and User Name(s) from the list that is populated.
- Enter a custom attribute name for a Group Name and User Names(s). The format of the custom attribute should be as follows:${CustomAttributeName}
- Remove a group name via an Xpath. This is done by clicking the Schema button, and selecting a node. The group name will be obtained via the Xpath at run time.