User Creation “Event” to run a Script

active-directorywindows-server-2008-r2

Is there something like an "event" that is fired when a user is created in active directory? An external system automatically creates active directory users and I would like to perform some powershell tasks directly after creation of a new user. When the user logs on, the script should have run already.

Has someone an idea how this could be achieved?

I am running Windows Server 2008 R2.

Best Answer

You have a couple of problems:

I can probably come up with an event to fire on a DC when a users is created but how can you guarantee that users will only be created on 1 DC?
User accounts are users accounts, so how will you determine what acounts are created by this external process and which were created for other reasons (service accounts etc.)?

Your best bet is to have the scripts kicked off by the external system. In the past instead of allowing some external system access to create users I have the external system kick off a script to create users and pass the details as parameters.

Related Solutions

How to automatically create a folder, assign a home folder and logon script automatically after a new User is created

When you create or edit the user in the AD console, you can assign a home directory to their profile.

By using the %username% variable (e.g. \\servername\sharename\%username%) you can get it to automatically name according to the user name.

You can also use the DSMOD command to script creation, directory assignment, and many other tasks. A good explanation of using this command for home directory assignment (including for multiple users) is here.

Powershell – When do the user logon scripts run

Logon scripts don't display a command prompt window whilst they are running by default, however it is possible to enable this behaviour via a GPO.

The logon scripts will run whilst the explorer shell is loading.

You can test the exact timing of this by adding the following to one of your scripts, which will record the time the script is run in a log file.

echo %date% %time% > %TEMP%\logon.log

Best Answer

Related Solutions

How to automatically create a folder, assign a home folder and logon script automatically after a new User is created

Powershell – When do the user logon scripts run

Related Topic