This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

Help with AD computers extract and group validation

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Help with AD computers extract and group validation

Go to solution
MartinCimone
L2 Linker

‎07-29-2021 11:01 AM

Hi !

 

I am trying to use XSoar to extract all computers from a specific "OU" in my AD and validate if those computers are members of a group and if they are not, add the missing computers to the said group.

 

Servers OS needs to be excluded from this extract since I do not want servers to be added to the AD group.

 

The "ad-get-computer" from the Task Library is not working very well since filling the "dn" field does not permit to target a specific "OU" and want a full path to a computer.

 

Does anyone have an idea of how I can achieve this?

 

Thanks.

(1)
1 accepted solution

Accepted Solutions

Go to solution
atullo
L2 Linker

‎07-29-2021 12:30 PM

Perhaps you could try using the ad-search command to filter on the computer's OU and then the ad-add-to-group command to add the missing computers to the group: Active Directory Query v2 Integration Documentation

 

Use the !ad-search command to run a query for Active Directory objects (users, contacts, computers, and so on). This command enables you to determine which data fields should be returned for the objects.

. . .

Add or remove a computer from a group using the following commands:

ad-add-to-group

View solution in original post

4 REPLIES 4

Go to solution
atullo
L2 Linker

‎07-29-2021 12:30 PM

Perhaps you could try using the ad-search command to filter on the computer's OU and then the ad-add-to-group command to add the missing computers to the group: Active Directory Query v2 Integration Documentation

 

Use the !ad-search command to run a query for Active Directory objects (users, contacts, computers, and so on). This command enables you to determine which data fields should be returned for the objects.

. . .

Add or remove a computer from a group using the following commands:

ad-add-to-group

Go to solution
MartinCimone
L2 Linker
In response to atullo

‎07-30-2021 04:57 AM

That could be a way to do it.  I'll check the documentation and see if I can do what I need.

 

Thanks for the hint 😉

0 Likes Likes

Go to solution
MartinCimone
L2 Linker

‎08-03-2021 09:34 AM

Hi @atullo,

 

FYI, I have been able to achieve what I wanted to do with the information you gave me.

 

I used the !ad-search command filtering with LDAP query format.

 

Thanks for pointing me out in the right direction.

(1)

Go to solution
atullo
L2 Linker
In response to MartinCimone

‎08-03-2021 01:20 PM

Happy to help and thanks for marking as a solution.

0 Likes Likes
  • 1 accepted solution
  • 4512 Views
  • 4 replies
  • 1 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks