Actions3
Overview
This node interacts with an LDAP server, specifically Active Directory, to perform operations such as querying users, creating new users, and moving objects between organizational units (OUs). It is useful for automating user management tasks in an Active Directory environment, such as adding new employees, searching for user information, or reorganizing directory structure. For example, it can create a new user with specified attributes and password, or move a user to a different OU.
Use Case Examples
- Create a new user in Active Directory with full name, username, password, and optional attributes like department and email.
- Search for users in Active Directory using either a manual LDAP filter or natural language queries (with OpenAI API integration).
- Move an existing user or object to a different OU within the directory.
Properties
| Name | Meaning |
|---|---|
| Full Name | The full name (cn) of the new user to create. |
| Last Name (sn) | The surname (sn) of the new user. |
| First Name (givenName) | The given name of the new user. |
| Username (sAMAccountName) | The username (sAMAccountName) for the new user. |
| User Principal Name (UPN) | The user principal name (UPN) for the new user. |
| Password | The password for the new user account. |
| Target OU | The distinguished name (DN) of the organizational unit where the new user will be created. |
| Options | Additional optional attributes for the new user, such as title, department, email, direct report email, phone number, display name, OU, company, and office. |
| Disable Certificate Validation | If enabled, disables SSL/TLS certificate verification (not recommended for production environments). |
Output
JSON
results- Array containing the results of the operation, such as created user distinguished name and related information.note- Optional note or additional information returned from the LDAP query operation.
Dependencies
- An LDAP server with credentials (URL, bind DN, and password) is required.
- For natural language query mode, OpenAI API credentials are required.
Troubleshooting
- LDAP Authentication Failed (Error 80090308): Indicates invalid credentials or authentication method. Verify bind DN format, password correctness, account status, permissions, and domain controller accessibility.
- LDAP Authentication Failed (Data 52e): Indicates invalid credentials such as wrong username or password, disabled or locked account, or expired password.
- LDAP Connection Failed: Cannot reach LDAP server. Check server URL, port accessibility, network connectivity, firewall settings, and DNS resolution.
- LDAP Operation Timeout: The operation took too long. Try increasing query timeout, using more specific filters, reducing page size, or checking network latency.