Share all details related to your problem, including any error messages you may have received.
Hi All,
We have a requirement in Active Directory application, where we need to set “AccountNotDelegated” account option while creating the user. we are setting the option in provisioning plan but after creating the user, that option is not selecting. Can anyone please help us to resolve this issue.
How are you setting this in plan, can you give more details
I believe you should use a Native Rule power shell script to do this, you cannot set in directly in plan, can I know which target attribute you are using in plan
We are not receiving any errors in the plan, but we are able to see some different value in the plan for the attribute, in the attribute request we are setting Boolean value(true) but in the IQ service logs plan, we are able to see the attribute value as a string variable(“CHECK CONFIG”).
I know, but few of the AD attributes have limitations with the connector, this is not a regular attribute we use, anyhow let me explore from provisioning plan but Native rule will definitely work in this case.
Also, just a wild try , can you set in the plan as String “true” and try how it behaves. ( I know at target it is a Boolean- this is just a try based earlier experiences with other fields)
You can use a runAfterScript Native rule to achieve the same.
Sample powershell looks below -
# Replace 'username' with the actual username of the account you want to modify
$username = "username"
# Retrieve the user object
$user = Get-ADUser -Identity $username
# Set the AccountNotDelegated property to $true
$user | Set-ADUser -AccountNotDelegated $true
You will get more details on How to use native rules for AD here.