• State Not Answered
  • Replies 5 replies
  • Subscribers 62 subscribers
  • Views 436 views
  • Users 0 members are here
Options
Related

Java Developer wants to programmatically manage group membership list

mpemba
1 month ago

A developer has asked for a service account that can update the membership list of a few groups. 

I would normally give the service account a role or add it as a manager or secondary owner who can update the membership list. Then have the developer install the management shell and show them how to connect to ARS and use the quest cmdlets to perform the operation. This is a JAVA app that is running on Linux so he can't install the management shell or the ADSI Provider. 

Is there some other way that I could accommodate this request?

Parents
  • 0 1 month ago in reply to Stu.Pollock

    I feel like this must be close. 

    $cred = get-credential
$body = @"
<?xml version="1.0" encoding="utf-8"?>
<soap12:Envelope xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:soap12="http://www.w3.org/2003/05/soap-envelope">
<soap12:Body>
<modifyRequest xmlns="urn:oasis:names:tc:SPML:2:0" returnData="everything">
<psoID ID="CN=TESTSPML,OU=TEST,DC=TEST,DC=TEST,DC=TEST"/>
<modification modificationMode="add">
<data>       
<attr name="member" xmlns="urn:oasis:names:tc:DSML:2:0:core">
<value>CN=Smith\, John (TEST),OU=Users,OU=TEST,OU=TEST,DC=TEST,DC=ny,DC=TEST</value>
</attr>
</data>
</modification>
</modifyRequest>
</soap12:Body>
</soap12:Envelope>
"@
 
$response = Invoke-RestMethod -Uri 'http://servername/ARServerSPML/SPMLProvider.asmx' -Credential $cred -Body $body -Method Post -ContentType 'application/soap+xml; charset=utf-8'

  • 0 1 month ago in reply to mpemba

    This isn't it either. 

    <?xml version="1.0" encoding="utf-8"?>
<soap12:Envelope xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:soap12="http://www.w3.org/2003/05/soap-envelope">
  <soap12:Body>
    <modifyRequest xmlns="urn:oasis:names:tc:SPML:2:0">
     <psoID ID="CN=TESTSPML,OU=TEST,DC=TEST,DC=TEST,DC=TEST"/>
      <modification>
        <modification operation="add" xmlns="urn:oasis:names:tc:DSML:2:0:core" />
        <data>       
           <attr name="member" xmlns="urn:oasis:names:tc:DSML:2:0:core">
             <value>"CN=Smith\, John (TEST),OU=Users,OU=TEST,OU=TEST,DC=TEST,DC=TEST,DC=TEST"</value>
           </attr>
        </data>
      </modification>
    </modifyRequest>
  </soap12:Body>
</soap12:Envelope>

Reply
  • 0 1 month ago in reply to mpemba

    This isn't it either. 

    <?xml version="1.0" encoding="utf-8"?>
<soap12:Envelope xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:soap12="http://www.w3.org/2003/05/soap-envelope">
  <soap12:Body>
    <modifyRequest xmlns="urn:oasis:names:tc:SPML:2:0">
     <psoID ID="CN=TESTSPML,OU=TEST,DC=TEST,DC=TEST,DC=TEST"/>
      <modification>
        <modification operation="add" xmlns="urn:oasis:names:tc:DSML:2:0:core" />
        <data>       
           <attr name="member" xmlns="urn:oasis:names:tc:DSML:2:0:core">
             <value>"CN=Smith\, John (TEST),OU=Users,OU=TEST,OU=TEST,DC=TEST,DC=TEST,DC=TEST"</value>
           </attr>
        </data>
      </modification>
    </modifyRequest>
  </soap12:Body>
</soap12:Envelope>

Children
No Data