PowerShell - Create New AD User Using Prompts and Variables
-
@wrx7m said in PowerShell - Create New AD User Using Prompts and Variables:
@JaredBusch said in PowerShell - Create New AD User Using Prompts and Variables:
This is why you run things manually and not in scripts until you know WTF you are doing.
Use the PowerShell ISE, that is what it is for.
You also do not have the Country in quotes. It is a string value.
I am running it manually and I am running it in ISE.
Change your
New-ADUser
to aWrite-Host
and keep adding to the concatenated line until it breaks. -
@JaredBusch said in PowerShell - Create New AD User Using Prompts and Variables:
@wrx7m said in PowerShell - Create New AD User Using Prompts and Variables:
@JaredBusch said in PowerShell - Create New AD User Using Prompts and Variables:
This is why you run things manually and not in scripts until you know WTF you are doing.
Use the PowerShell ISE, that is what it is for.
You also do not have the Country in quotes. It is a string value.
I am running it manually and I am running it in ISE.
Change your
New-ADUser
to aWrite-Host
and keep adding to the concatenated line until it breaks.Write-host is one of the best debugging tools for poweshell. Does ISE have the ability to report what variable is assigned to what at a given step?
-
Thanks, everyone. Write-host was a great tool. I have found the following to work from start to finish.
Edit: Added GivenName and Surname parameters
Import-Module ActiveDirectory $GivenName = Read-Host -Prompt "Enter First Name" $Surname = Read-Host -Prompt "Enter Last Name" $SecurePW = Read-Host -Prompt "Enter a Password" -AsSecureString New-ADUser -GivenName $GivenName ` -Surname $Surname ` -Name "$GivenName $Surname" ` -AccountPassword $SecurePW ` -SamAccountName $GivenName ` -DisplayName "$GivenName $Surname" ` -PasswordNeverExpires $True ` -UserPrincipalName "$GivenName@UPNDomain.com" ` -Country "US" ` -EmailAddress "$GivenName.$Surname@email1.com" ` -Path "OU=email1.com,OU=User Accounts,DC=upn,DC=com" ` -Enabled $True Set-ADUser -Identity "$GivenName" -Add @{Proxyaddresses="SMTP:$GivenName.$Surname@email1.com", "smtp:$GivenName.$Surname@email2.com", "smtp:$GivenName.$Surname@email3.com", "smtp:$GivenName.$Surname@email4.com", "smtp:$GivenName.$Surname@email5.com", "smtp:$GivenName.$Surname@email6.com"} Add-ADGroupMember -Identity Office365Users -Members $GivenName
-
@wrx7m Now you have to make a stupid proof because what if I just had to enter each time and asked me for information?
-
@JaredBusch said in PowerShell - Create New AD User Using Prompts and Variables:
@wrx7m Now you have to make a stupid proof because what if I just had to enter each time and asked me for information?
I wonder if it would allow no first and last name before erroring out. It shouldn't be able to create it, because those variables are used to create the UPN. No UPN, no workie. I do know that you have to specify a password that adheres to the domain policy.
-
@wrx7m said in PowerShell - Create New AD User Using Prompts and Variables:
If I get rid of the attempt to combine the 2 existing variables into a 3rd, I get this error.
New-ADUser : A positional parameter cannot be found that accepts argument '+'. At \\FP02\it\Scripts\AD\AD-InitialUserCreationVariables.ps1:5 char:1 + New-ADUser -Name "$GivenName $Surname" ` + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + CategoryInfo : InvalidArgument: (:) [New-ADUser], ParameterBindingException + FullyQualifiedErrorId : PositionalParameterNotFound,Microsoft.ActiveDirectory.Management.Commands.NewADUser
Like this I think:
New-ADUser -Name "$($GivenName) $($Surname)"`
From: https://blogs.technet.microsoft.com/stefan_stranger/2013/09/25/powershell-sub-expressions/