 |
NNS ADix - How to...Create Group Objects |
|
This topic describes how to create group objects with NNS ADix.
The following table contains a list attributes which are mandatory when creating group objects:
| Attribute | Type | Description |
| path | single-valued | The object path of the computer object to create. Example: LDAP://cn=group1,ou=groups,dc=dom,dc=com |
| class | single-valued | Provides the object class. Must be set to 'group'. |
| sAMAccountName | single-valued | The pre-Windows 2000 logon name. The pre-Windows 2000 logon name is required to be unique across a domain. |
| groupType | singlevalued | The type of the group to create. For a list of valid values for this attribute see the help topic Appendix A: Valid Values for Attribute 'groupType'. |
In addition
to the mandatory attributes you can set various optional
attributes. The following table
contains a list of some attributes you can
set:
| Attribute | Type | Description |
| memberOf | multi-valued | The groups, that the
group is a member of. The import file can contain the distinguished
names or the pre-Windows 2000 logon names of the groups. The Directory Services always stores these values as distinguished names. |
| member | multi-valued | The group members. The import file can contain the distinguished
names or the pre-Windows 2000 logon names of the groups. The Directory Services always stores these values as distinguished names. |
| ... |
In order to create an e-mail enabled group, the following attributes must be set:
| Attribute | Type | Description |
| mailNickname | single-valued | This is the alias to the group. |
| proxyAddresses | multi-valued | A multi-valued attribute
that contains the e-mail addresses of the group. The format of
this attribute is "<PREFIX>:proxy", where <PREFIX>
is either SMTP, X400, GWISE, or NOTES. Example: SMTP:group1@dom.com |
| displayName | single-valued | The display name of the group object. E.g. the display name is used in Microsoft Exchange address books. |
Note:
Exchange 2007 Distribution Groups:
In Exchange 2000/Exchange 2003 distribution groups are partially
provisioned after their creation. The
Recipient Update Service (RUS) is responsible for setting the
remaining attributes.
In Exchange 2007 there is no RUS which is setting the
remaining Exchange attributes automatically.
If you want to bulk import mail-enabled Exchange 2007 group
objects (distribution groups) using NNS ADix,
perform the following steps:
1) Import the group objects using NNS ADix
2) Execute the following Exchange Management Shell command:
get-distributiongroup | set-distributiongroup
Example:
The following example creates a global security group named 'group1' which has one member:
path;class;sAMAccountName;groupType;member
LDAP://cn=group1,ou=groups,dc=dom,dc=com;group;group1;-2147483646;cn=j.doe,cn=users,dc=dom,dc=com
| Copyright © 2008 by NNS - Nigl Network Solutions |