• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 41
  • Last Modified:

Generate temporary AD users

Hello!

I was challenged by a customer to come up with a solution for them to generate temporary AD users that lasts for X amount of hours/days. With interactive input for this of course.

The scenario is that they have a software that they want to allow temporary access to for customers and consultants.

Is this possible via something like Powershell? Or do anyone know of a software that can do this? Without being a fully "bloated" system. This is the only function they need.

Appreciate any suggestions :-) Maybe I've missed something vital in my explanation, I'll check in later.

Cheers

Regards
Daniel
0
itssab
Asked:
itssab
1 Solution
 
Joseph MoodyBlogger and wearer of all hats.Commented:
When you create a user in Active Directory Users and Computers, you can specify an expiration time for the account. Would this work?
0
 
Mike KlineCommented:
You can also set it using Set-ADAccountExpiration but Joe's answer is probably easier for help desk folks via the GUI.

What do you mean by interactive input, are  you looking for a custom front end for this?

Thanks
Mike
0
 
Alan GunnCommented:
I had a request at 14:00 to have an account "Expire" at 18:00.
I set it to expire at the end of the day and adjusted it's logon hours to nothing after 18:00.

It only stops you authenticating after that time but it gives a little extra control.

Cheers!

TRM
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

 
Life1430Sr EngineerCommented:
You may below script it may reduce your most of the time
http://gallery.technet.microsoft.com/scriptcenter/PowerShell-Create-Active-7e6a3978

You will just have to fill the details in excel file so its interactive ..:-)
0
 
itssabAuthor Commented:
Lots of replies I see, thank you :)

I'm know of how to do it through the GUI, but they want something more intuitive and automated than that.

Yes, some kind of customer front end is what I'm after. You know, the old "I want to be able to press a button!" customer argument ;) Type in expire time, maybe what group it should be belong to etc, then click a button and username and password is generated.

They need these users to be removed by automation after they've expired as well.

They want an interface they can reach from anywhere in the world. But that would have to be remote desktop if nothing else is available.
0
 
itssabAuthor Commented:
No more suggestions?
0
 
Seth SimmonsSr. Systems AdministratorCommented:
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now