<div>
And where do you get the name of the people? <br />
<br />
So the process would be?<br />
Take the name of the people somewhere and get the mapping table finally do the Add/remove from groups?<br />
<br />
I mean that table is for all users? (since they have different genders)... ? the problem is not clear try to reformulate your question.<br />
<br />
Jose.
</div>


<div>
The way I am reading this it would not be very easy or efficient to accommodate this.<br />
<br />
<br />
If I am reading this question correctly, you have a list of <br />
<br />
Gender, Department, Security Group<br />
M, HR, Group 1<br />
F, HR, Group2<br />
M, Finance, Group 3<br />
F, Finance, Group 4<br />
etc...<br />
<br />
and you want to be able to make modifications to that &quot;list&quot; and it dynamically change the attributes for that user/s in Active Directory?<br />
<br />
Please confirm this.
</div>


<div>
Ok, it would go like this:<br />
<br />
Get all users from AD.<br />
In the user objects I read the gender and department attributes.<br />
<br />
If (Gender = F -and Department=HR){<br />
&nbsp;Ad user to AD Group &quot;Group2&quot;<br />
}<br />
<br />
and so on...<br />
<br />
The mapping table basically defines in which security group the user would be added depending on Gender and Department.<br />
If that mapping table changes in a couple of months (e.g. a new Department is introduced or a condition is changed), the script should add the users to the groups according to the new mapping table
</div>


<div>
I would suggest you a gig for this.
</div>


<div>
Nah, I already figured it out.<br />
<br />
I combined the columns Gender and Department into one so I wold have two columns then converted it to a hashtable and used that for lookup.<br />
<br />
I'll post the script when it's finished.<br />
Still have a couple of things to change.
</div>


alohadin

<div>
footech,<br />
<br />
This works perfectly.<br />
I just tested it and it works perfectly fine!<br />
Never thought of using the compare-object cmdlet<br />
<br />
Thank you
</div>


<div>
Glad it works.<br />
<br />
The method you mentioned of combining the two columns so that you essentially have unique values that you can use as keys in a hashtable is also a good one.
</div>


<div>
<div class="content wysiwyg-content">
Hi,<br />
<br />
I have a list of users that need to be added to a a security group in AD depending on some kind of mapping table.<br />
<br />
Mapping table example:<br />
<br />
Gender, Department, Security Group<br />
M, HR, Group 1<br />
F, HR, Group2<br />
M, Finance, Group 3<br />
F, Finance, Group 4<br />
etc...<br />
<br />
Note: This is just an example<br />
<br />
So I have a list of users where I can read the gender en department from the object and I need to add them to a corresponding group according to the mapping table.<br />
If this mapping table is changed, the group membership should changed dinamically.<br />
<br />
What would be the easiest approach fir this?<br />
I don't like to have a lot of if statements as the mapping table is very big.<br />
<br />
Thanks
</div>
</div>


Hi,

I have a list of users that need to be added to a a security group in AD depending on some kind of mapping table.

Mapping table example:

Gender, Department, Security Group
M, HR, Group 1
F, HR, Group2
M, Finance, Group 3
F, Finance, Group 4
etc...

Note: This is just an example

So I have a list of users where I can read the gender en department from the object and I need to add them to a corresponding group according to the mapping table.
If this mapping table is changed, the group membership should changed dinamically.

What would be the easiest approach fir this?
I don't like to have a lot of if statements as the mapping table is very big.

Thanks

Powershell - Group membership with mapping table

Windows PowerShell is a task automation and configuration management framework from Microsoft, consisting of a command-line shell and associated scripting language built on the .NET Framework. PowerShell provides full access to the Component Object Model (COM) and Windows Management Instrumentation (WMI), enabling administrators to perform administrative tasks on both local and remote Windows systems as well as WS-Management and Common Information Model (CIM) enabling management of remote Linux systems and network devices.

Powershell

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.