Generate temporary AD users

Hello!

I was challenged by a customer to come up with a solution for them to generate temporary AD users that lasts for X amount of hours/days. With interactive input for this of course.

The scenario is that they have a software that they want to allow temporary access to for customers and consultants.

Is this possible via something like Powershell? Or do anyone know of a software that can do this? Without being a fully "bloated" system. This is the only function they need.

Appreciate any suggestions :-) Maybe I've missed something vital in my explanation, I'll check in later.

Cheers

Regards
Daniel
itssabAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Joseph MoodyConnect With a Mentor Blogger and wearer of all hats.Commented:
When you create a user in Active Directory Users and Computers, you can specify an expiration time for the account. Would this work?
0
 
Mike KlineCommented:
You can also set it using Set-ADAccountExpiration but Joe's answer is probably easier for help desk folks via the GUI.

What do you mean by interactive input, are  you looking for a custom front end for this?

Thanks
Mike
0
 
Alan GunnCommented:
I had a request at 14:00 to have an account "Expire" at 18:00.
I set it to expire at the end of the day and adjusted it's logon hours to nothing after 18:00.

It only stops you authenticating after that time but it gives a little extra control.

Cheers!

TRM
0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

 
Sarang TinguriaSr EngineerCommented:
You may below script it may reduce your most of the time
http://gallery.technet.microsoft.com/scriptcenter/PowerShell-Create-Active-7e6a3978

You will just have to fill the details in excel file so its interactive ..:-)
0
 
itssabAuthor Commented:
Lots of replies I see, thank you :)

I'm know of how to do it through the GUI, but they want something more intuitive and automated than that.

Yes, some kind of customer front end is what I'm after. You know, the old "I want to be able to press a button!" customer argument ;) Type in expire time, maybe what group it should be belong to etc, then click a button and username and password is generated.

They need these users to be removed by automation after they've expired as well.

They want an interface they can reach from anywhere in the world. But that would have to be remote desktop if nothing else is available.
0
 
itssabAuthor Commented:
No more suggestions?
0
 
Seth SimmonsSr. Systems AdministratorCommented:
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.