C
Cary Shultz [A.D. MVP]
Good morning Everyone!
With the help/assistance of a couple of very nice people I have created an
HTA that creates a mail-enabled user account object, populates most of the
AD fields, creates several network folders with the correct permissions and
joins that user account object to several security groups. Please find
below the 'code'. Simply save it in Notepad as 'whatever.hta' and use
Internet Explorer to open it up and away you go. Please note that you will
have to modify a few things for it to work in your environment. Also please
note that it has a very basic interface that you can customize to your
tastes.
You will have to go to the Internet and download SetACL.exe ( or use
something else, like cacls or xcacls ) and put that .exe file and this .hta
file in the same folder. Otherwise the permissions on the folder(s) will
not work....
Code starts here---------------------------------------------
<html>
<HTA:APPLICATION
APPLICATIONNAME="User Account Object Creation"
SCROLL="no"
SINGLEINSTANCE="yes"
WINDOWSTATE="normal"
<head>
<title>User Account Object Creation Form</title>
<style type="text/css">
<!--
..style3 {font-size: 13px}
body,td,th {
font-family: Arial, Helvetica, sans-serif;
}
..style2 { font-family: Arial, Helvetica, sans-serif;
font-size: 13.5pt;
color: #008080;
font-weight: bold;
}
..style5 {font-size: small; color: #FF0000}
..style6 {color: #FF0000}
-->
</style>
<script type="text/vbscript">
Dim defaultNC
defaultNC = GetObject("LDAP://RootDSE").Get("DefaultNamingContext")
BaseOU = "OU=Offices," & defaultNC
Sub CreateAccount
' ##### -----Create the sAMAccountName for the user account object-----
#####
strUser = TextUser.Value
If strUser = "" Then 'Line 50
MsgBox "You're missing required fields.",64, "Alert"
Exit Sub
End If
' ##### -----end of section----- #####
' @@@@@ -----Set the first name for the user account object:Required-----
@@@@@
strFirst = TextFirst.Value
If strFirst = "" Then
MsgBox "You're missing required fields",64, "Alert"
Exit Sub
End If
' @@@@@ -----end of section----- @@@@@
' ##### -----Set the middle initial for the user account object----- #####
strInitial = TextInitial.Value
' ##### -----end of section----- #####
' @@@@@ -----Set the last name for the user account object:Required-----
@@@@@
strLast = TextLast.Value
If strLast = "" Then
MsgBox "You're missing required fields",64, "Alert"
Exit Sub
End If
' @@@@@ -----end of section----- @@@@@
' ##### -----Set the variables for the user account objects----- #####
strDisplay = strLast & ", " & strFirst
strCN = strLast & "\, " & strFirst
strPubFldrName = strFirst & " " & strLast
strHomeFldrName = strUser
strDomain = "yourdomain.com"
strMail = strUser & "@" & strDomain
' ##### -----end of section----- ##### Line 100
' @@@@@ -----Check to make sure that the user account object does not
already exist----- @@@@@
Set objConnection = CreateObject("ADODB.Connection")
objConnection.Open "Provider=ADsDSOObject;"
Set objCommand = CreateObject("ADODB.Command")
objCommand.ActiveConnection = objConnection
objCommand.CommandText = _
"<GC://" & defaultNC & ">;(&(objectCategory=Person)(objectClass=user)" & _
"(samAccountName=" & strUser & "));samAccountName;subtree"
Set objRecordSet = objCommand.Execute
If objRecordSet.RecordCount = 0 Then
Else
MsgBox "The User Account already exists.",48,"Alert"
Exit Sub
End If
objConnection.Close
' @@@@@ -----end of section----- @@@@@
Const ADS_UF_ACCOUNTDISABLE = 2
Const ADS_PROPERTY_UPDATE = 2
' ##### -----Determine the DNS domain from the RootDSE object----- #####
Set objRootDSE = GetObject("LDAP://RootDSE")
strDNSDomain = objRootDSE.Get("DefaultNamingContext")
' ##### -----end of section----- #####
If Site.Value = "LocationAlert" Then
MsgBox "You must select the Users Location.",64, "Alert"
Exit Sub
End If
Select Case Site.Value ' Line 150
Case "Roanoke"
strOffice = "Roanoke"
strLDAPdn = "OU=Roanoke," & BaseOU
strUserSrvr = "ROA-DC01"
strHomeFldr = "home$"
strPublicFldr = "public"
strTelephone = "540.555.1234"
strAddress = "1 Main Street"
strCity = "Roanoke"
strState = "VA"
strZip = "24012"
Case "Richmond"
strOffice = "Richmond"
strLDAPdn = "OU=Richmond," & BaseOU
strUserSrvr = "ROA-DC01"
strHomeFldr = "home$"
strPublicFldr = "public"
strTelephone = "804.555.1111"
strAddress = "1 Main Street"
strCity = "Richmond"
strState = "VA"
strZip = "22178"
Case "Blacksburg"
strOffice = "Blacksburg"
strLDAPdn = "OU=Blacksburg," & BaseOU
strUserSrvr = "ROA-DC01"
strHomeFldr = "home$"
strPublicFldr = "public"
strTelephone = "540.555.1235"
strAddress = "1 Main Street"
strCity = "Blacksburg"
strState = "VA"
strZip = "24179"
Case "Raleigh"
strOffice = "Raleigh"
strLDAPdn = "OU=Raleigh," & BaseOU
strUserSrvr = "ROA-DC01"
strTelephone = "704.555.1235"
strHomeFldr = "home$"
strPublicFldr = "public"
strAddress = "1 Main Street"
strCity = "Raleigh"
strState = "NC"
strZip = "27245"
End Select ' Line 200
' Create the user account object with basic information
Set objOU = GetObject("LDAP://" & strLDAPdn)
Set objUser = objOU.Create("User", "cn=" & strCN)
objUser.Put "sAMAccountName", LCase(strUser)
objUser.Put "userPrincipalName", LCase(strUser) & "@" & strDomain
' Create the first name for user account object
objUser.Put "givenName", strFirst
' Create the middle initial for user account object
If strInitial <> "" Then
objUser.Put "initials", strInitial
End If
' Create the last name for user account object
objUser.Put "sn", strLast
objUser.SetInfo
' Create General Page information for the user account object
objUser.Put "physicalDeliveryOfficeName", strOffice
objUser.Put "telephoneNumber",strTelephone
objUser.Put "wWWHomePage","http://www." & strDomain
objUser.Put "displayName", strDisplay
' Create Address information for the user account object
objUser.Put "streetAddress", strAddress
objUser.Put "l", strCity
objUser.Put "st",strState
objUser.Put "postalCode",strZip
objUser.Put "co","United States"
objUser.Put "c","US"
objUser.Put "countryCode","840"
objUser.Put "mail", strMail
' Create Organization information for the user account object
objUser.Put "Company","YourDomain, Inc."
' Create the password for the user account object
objUser.SetPassword "p@ssw0rd"
objUser.Put "pwdLastSet", 0
intUAC = objUser.Get("userAccountControl")
If intUAC And ADS_UF_ACCOUNTDISABLE Then
objUser.Put"userAccountControl", intUAC Xor ADS_UF_ACCOUNTDISABLE
End If
objUser.SetInfo
Const ADS_PROPERTY_APPEND = 3
' Line 250
' Make the user account object a member of the following group
Set objGroup = GetObject _
("LDAP://cn=XYZ," & BaseOU)
objGroup.PutEx ADS_PROPERTY_APPEND, _
"member", Array("cn=" & strCN & "," & strLDAPdn)
objGroup.SetInfo
' Make the user account object a member of the following group
Set objGroup = GetObject _
("LDAP://cn=123," & strLDAPdn)
objGroup.PutEx ADS_PROPERTY_APPEND, _
"member", Array("cn=" & strCN & "," & strLDAPdn)
objGroup.SetInfo
If MailBoxStore.Value = "LocationAlert" Then
MsgBox "You must select the Users Mail Box.",64, "Alert"
Exit Sub
End If
Select Case MailBoxStore.Value
Case "AsstMBS1"
strExchSRVR = "ROA-DC01"
strMBStore = "AMBS1 (ROA-DC01)"
strStoreGRP = "First Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
Case "MngrMBS1"
strExchSRVR = "ROA-DC01"
strMBStore = "MMBS1 (ROA-DC01)"
strStoreGRP = "First Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
Case "AsstMBS2"
strExchSRVR = "ROA-DC01"
strMBStore = "AMBS2 (ROA-DC01)"
strStoreGRP = "Second Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
Case "MngrMBS2"
strExchSRVR = "ROA-DC01"
strMBStore = "MMBS2 (ROA-DC01)"
strStoreGRP = "Second Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
' Line 301
Case "AsstMBS3"
strExchSRVR = "ROA-DC01"
strMBStore = "AMBS3 (ROA-DC01)"
strStoreGRP = "Third Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
Case "MngrMBS3"
strExchSRVR = "ROA-DC01"
strMBStore = "MMBS3 (ROA-DC01)"
strStoreGRP = "Third Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
Case "AsstMBS4"
strExchSRVR = "ROA-DC01"
strMBStore = "AMBS4 (ROA-DC01)"
strStoreGRP = "Forth Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
Case "MngrMBS4"
strExchSRVR = "ROA-DC01"
strMBStore = "AMBS4 (ROA-DC01)"
strStoreGRP = "Forth Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
End Select
' Creates the users mailbox
Set objIADSUser = GetObject("LDAP://CN=" & strCN & "," & strLDAPdn)
objIADSUser.CreateMailbox("LDAP://CN=" & strMBStore & ",CN=" & strStoreGRP &
",CN=InformationStore,CN=" & strExchSRVR & ",CN=Servers,CN=" & strAdminGRP &
",CN=Administrative Groups,CN=" & strExchORG & ",CN=Microsoft
Exchange,CN=Services,CN=Configuration,DC=yourdomain,DC=com")
objIADSUser.SetInfo
' The path is as follows: CN=name of Mailbox Store,CN=name of Storage
Group,CN=InformationStore,CN=name of Exchange Server,
' CN=Servers,CN=name of Administrative Group,CN=Administrative
Groups,CN=name of Exchange Organization,CN=Microsoft Exchange,
' CN=Services,CN=Configuration,DC=xxxxxx,DC=xxx
'Set objIADSUser = GetObject("LDAP://CN=" & strCN & "," & strLDAPdn)
'objIADSUser.CreateMailbox ("LDAP://CN=AMBS3 (ROA-DC01),CN=Third Storage
Group,CN=InformationStore,CN=ROA-DC01,CN=Servers,CN=First Administrative
Group,CN=Administrative Groups,CN=yourdomain,CN=Microsoft
Exchange,CN=Services,CN=Configuration,DC=yourdomain,DC=com")
' Set the user account objects home drive information in AD
objUser.Put "homeDirectory", "\\" & strUserSrvr & "\" & strHomeFldr & "\" &
LCase(strUser) & ""
objUser.Put "homeDrive", "H"
' Create the user account objects home drive
Set objFSO = CreateObject("Scripting.FileSystemObject")
Set objFolder = objFSO.CreateFolder("\\" & strUserSrvr & "\" & strHomeFldr &
"\" & LCase(strUser))
' line 350
' Change the permissions on the user account objects home drive
Set objShell = CreateObject("Wscript.Shell")
strHome = "\\" & strUserSrvr & "\" & strHomeFldr & "\" & LCase(strUser)
objShell.Run ("SetACL.exe -on """ & strHome & """ -ot file -actn ace " &
"-ace ""n:yourdomain.com\" & strUser & ";p:change""")
' Create the user account objects public folder
Set objFSO = CreateObject("Scripting.FileSystemObject")
Set objFolder = objFSO.CreateFolder("\\" & strUserSrvr & "\" & strPublicFldr
& "\" & strPubFldrName)
objUser.SetInfo
Set objRootDSE = Nothing
Set objOU = Nothing
Set objUser = Nothing
Set objGroup = Nothing
Set objFSO = Nothing
Set objFolder = Nothing
Set objShell = Nothing
Set objIADSUser = Nothing
End Sub
Sub Reload
Location.Reload(True)
End Sub
Sub bodyLoaded()
window.ResizeTo 600,510 ' WIDTH, HEIGHT
End Sub
</script>
</head>
<body onLoad="bodyLoaded()">
<p align = "center"><img src="\\roa-dc01\images$\verisign.bmp" width="189"
height="46"></p>
<p align = "center" class="style2">User Account Object Creation Page.</p>
<table width="289" border="0" align="left">
<tr>
<td width="89"><span class="style5">*</span>Login ID: </td>
<td width="144"><input type="text" name="TextUser"></td>
</tr>
<tr>
<td><span class="style5">*</span>First Name:</td>
<td><input type="text" name="TextFirst"></td>
</tr>
<tr>
<td>Middle Initial: </td>
<td><input type="text" name="TextInitial"></td>
</tr>
<tr>
<td><span class="style5">*</span>Last Name: </td>
<td><input type="text" name="TextLast"></td>
</tr>
<tr>
<td><span class="style5">*</span>Site: </td>
<td align="left">
<select size="1" name="Site">
<option value="Roanoke">Roanoke</option>
<option value="Richmond">Richmond</option>
<option value="Blacksburg">Blacksburg</option>
<option value="Raleigh">Raleigh</option>
<option selected value="LocationAlert">-Select Users Location-</option>
</select></td>
<tr>
<td><span class="style5">*</span>Mailbox: </td>
<td align="left">
<select size="1" name="MailBoxStore">
<option value="AsstMBS1">Assistant 1</option>
<option value="MngrMBS1">Manager 1</option>
<option value="AsstMBS2">Assistant 2</option>
<option value="MngrMBS2">Manager 2</option>
<option value="AsstMBS3">Assitant 3</option>
<option value="MngrMBS3">Manager 3</option>
<option value="AsstMBS4">Assitant 4</option>
<option value="MngrMBS4">Manager 4</option>
<option selected value="LocationAlert">-Select Users Mail Box-</option>
</select></td>
</table>
<p> </p>
<p> </p>
<p><br>
<input type="button" name="Submit" value="Submit" onClick="CreateAccount">
</p>
<p>The new user account object will have an initial password of p@ssw0rd.
</p>
<p>The new employee will also be required to change his/her password at
first logon. </p>
<p class="style3"><span class="style6">*</span> Indicates Required Field</p>
<br />
<br />
<br />
<p>
<input id="reloadbutton" class="button" type="reset" value="Clear Form"
name="reload_button" onClick="Reload">
</p>
<p>
<input type="button" value=" Exit " name="close_button"
onClick="Self.Close">
</p>
</body>
</html>
Code ends here-------------------------
Please feel free to use this as you see best. However, please use this in a
test environment first and make sure that you make all of the modifications
necessary so that it works in your environment. This works in a WIN2000 AD
environment with Exchange 2000. Do not know if it would work in WIN2003 /
Exchange 2003. I am not responsible for any damage that using this might
cause. So, please figure everything out in a test lab' then use it in a
production environment.
If you do use this and make any changes to it or see something that could be
better please let us know. This is a work in progress......
--
Cary W. Shultz
Roanoke, VA 24012
WIN2000 Active Directory MVP
http://www.activedirectory-win2000.com
(soon to be updated!!!)
http://www.grouppolicy-win2000.com
(soon to be updated!!!)
With the help/assistance of a couple of very nice people I have created an
HTA that creates a mail-enabled user account object, populates most of the
AD fields, creates several network folders with the correct permissions and
joins that user account object to several security groups. Please find
below the 'code'. Simply save it in Notepad as 'whatever.hta' and use
Internet Explorer to open it up and away you go. Please note that you will
have to modify a few things for it to work in your environment. Also please
note that it has a very basic interface that you can customize to your
tastes.
You will have to go to the Internet and download SetACL.exe ( or use
something else, like cacls or xcacls ) and put that .exe file and this .hta
file in the same folder. Otherwise the permissions on the folder(s) will
not work....
Code starts here---------------------------------------------
<html>
<HTA:APPLICATION
APPLICATIONNAME="User Account Object Creation"
SCROLL="no"
SINGLEINSTANCE="yes"
WINDOWSTATE="normal"
<head>
<title>User Account Object Creation Form</title>
<style type="text/css">
<!--
..style3 {font-size: 13px}
body,td,th {
font-family: Arial, Helvetica, sans-serif;
}
..style2 { font-family: Arial, Helvetica, sans-serif;
font-size: 13.5pt;
color: #008080;
font-weight: bold;
}
..style5 {font-size: small; color: #FF0000}
..style6 {color: #FF0000}
-->
</style>
<script type="text/vbscript">
Dim defaultNC
defaultNC = GetObject("LDAP://RootDSE").Get("DefaultNamingContext")
BaseOU = "OU=Offices," & defaultNC
Sub CreateAccount
' ##### -----Create the sAMAccountName for the user account object-----
#####
strUser = TextUser.Value
If strUser = "" Then 'Line 50
MsgBox "You're missing required fields.",64, "Alert"
Exit Sub
End If
' ##### -----end of section----- #####
' @@@@@ -----Set the first name for the user account object:Required-----
@@@@@
strFirst = TextFirst.Value
If strFirst = "" Then
MsgBox "You're missing required fields",64, "Alert"
Exit Sub
End If
' @@@@@ -----end of section----- @@@@@
' ##### -----Set the middle initial for the user account object----- #####
strInitial = TextInitial.Value
' ##### -----end of section----- #####
' @@@@@ -----Set the last name for the user account object:Required-----
@@@@@
strLast = TextLast.Value
If strLast = "" Then
MsgBox "You're missing required fields",64, "Alert"
Exit Sub
End If
' @@@@@ -----end of section----- @@@@@
' ##### -----Set the variables for the user account objects----- #####
strDisplay = strLast & ", " & strFirst
strCN = strLast & "\, " & strFirst
strPubFldrName = strFirst & " " & strLast
strHomeFldrName = strUser
strDomain = "yourdomain.com"
strMail = strUser & "@" & strDomain
' ##### -----end of section----- ##### Line 100
' @@@@@ -----Check to make sure that the user account object does not
already exist----- @@@@@
Set objConnection = CreateObject("ADODB.Connection")
objConnection.Open "Provider=ADsDSOObject;"
Set objCommand = CreateObject("ADODB.Command")
objCommand.ActiveConnection = objConnection
objCommand.CommandText = _
"<GC://" & defaultNC & ">;(&(objectCategory=Person)(objectClass=user)" & _
"(samAccountName=" & strUser & "));samAccountName;subtree"
Set objRecordSet = objCommand.Execute
If objRecordSet.RecordCount = 0 Then
Else
MsgBox "The User Account already exists.",48,"Alert"
Exit Sub
End If
objConnection.Close
' @@@@@ -----end of section----- @@@@@
Const ADS_UF_ACCOUNTDISABLE = 2
Const ADS_PROPERTY_UPDATE = 2
' ##### -----Determine the DNS domain from the RootDSE object----- #####
Set objRootDSE = GetObject("LDAP://RootDSE")
strDNSDomain = objRootDSE.Get("DefaultNamingContext")
' ##### -----end of section----- #####
If Site.Value = "LocationAlert" Then
MsgBox "You must select the Users Location.",64, "Alert"
Exit Sub
End If
Select Case Site.Value ' Line 150
Case "Roanoke"
strOffice = "Roanoke"
strLDAPdn = "OU=Roanoke," & BaseOU
strUserSrvr = "ROA-DC01"
strHomeFldr = "home$"
strPublicFldr = "public"
strTelephone = "540.555.1234"
strAddress = "1 Main Street"
strCity = "Roanoke"
strState = "VA"
strZip = "24012"
Case "Richmond"
strOffice = "Richmond"
strLDAPdn = "OU=Richmond," & BaseOU
strUserSrvr = "ROA-DC01"
strHomeFldr = "home$"
strPublicFldr = "public"
strTelephone = "804.555.1111"
strAddress = "1 Main Street"
strCity = "Richmond"
strState = "VA"
strZip = "22178"
Case "Blacksburg"
strOffice = "Blacksburg"
strLDAPdn = "OU=Blacksburg," & BaseOU
strUserSrvr = "ROA-DC01"
strHomeFldr = "home$"
strPublicFldr = "public"
strTelephone = "540.555.1235"
strAddress = "1 Main Street"
strCity = "Blacksburg"
strState = "VA"
strZip = "24179"
Case "Raleigh"
strOffice = "Raleigh"
strLDAPdn = "OU=Raleigh," & BaseOU
strUserSrvr = "ROA-DC01"
strTelephone = "704.555.1235"
strHomeFldr = "home$"
strPublicFldr = "public"
strAddress = "1 Main Street"
strCity = "Raleigh"
strState = "NC"
strZip = "27245"
End Select ' Line 200
' Create the user account object with basic information
Set objOU = GetObject("LDAP://" & strLDAPdn)
Set objUser = objOU.Create("User", "cn=" & strCN)
objUser.Put "sAMAccountName", LCase(strUser)
objUser.Put "userPrincipalName", LCase(strUser) & "@" & strDomain
' Create the first name for user account object
objUser.Put "givenName", strFirst
' Create the middle initial for user account object
If strInitial <> "" Then
objUser.Put "initials", strInitial
End If
' Create the last name for user account object
objUser.Put "sn", strLast
objUser.SetInfo
' Create General Page information for the user account object
objUser.Put "physicalDeliveryOfficeName", strOffice
objUser.Put "telephoneNumber",strTelephone
objUser.Put "wWWHomePage","http://www." & strDomain
objUser.Put "displayName", strDisplay
' Create Address information for the user account object
objUser.Put "streetAddress", strAddress
objUser.Put "l", strCity
objUser.Put "st",strState
objUser.Put "postalCode",strZip
objUser.Put "co","United States"
objUser.Put "c","US"
objUser.Put "countryCode","840"
objUser.Put "mail", strMail
' Create Organization information for the user account object
objUser.Put "Company","YourDomain, Inc."
' Create the password for the user account object
objUser.SetPassword "p@ssw0rd"
objUser.Put "pwdLastSet", 0
intUAC = objUser.Get("userAccountControl")
If intUAC And ADS_UF_ACCOUNTDISABLE Then
objUser.Put"userAccountControl", intUAC Xor ADS_UF_ACCOUNTDISABLE
End If
objUser.SetInfo
Const ADS_PROPERTY_APPEND = 3
' Line 250
' Make the user account object a member of the following group
Set objGroup = GetObject _
("LDAP://cn=XYZ," & BaseOU)
objGroup.PutEx ADS_PROPERTY_APPEND, _
"member", Array("cn=" & strCN & "," & strLDAPdn)
objGroup.SetInfo
' Make the user account object a member of the following group
Set objGroup = GetObject _
("LDAP://cn=123," & strLDAPdn)
objGroup.PutEx ADS_PROPERTY_APPEND, _
"member", Array("cn=" & strCN & "," & strLDAPdn)
objGroup.SetInfo
If MailBoxStore.Value = "LocationAlert" Then
MsgBox "You must select the Users Mail Box.",64, "Alert"
Exit Sub
End If
Select Case MailBoxStore.Value
Case "AsstMBS1"
strExchSRVR = "ROA-DC01"
strMBStore = "AMBS1 (ROA-DC01)"
strStoreGRP = "First Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
Case "MngrMBS1"
strExchSRVR = "ROA-DC01"
strMBStore = "MMBS1 (ROA-DC01)"
strStoreGRP = "First Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
Case "AsstMBS2"
strExchSRVR = "ROA-DC01"
strMBStore = "AMBS2 (ROA-DC01)"
strStoreGRP = "Second Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
Case "MngrMBS2"
strExchSRVR = "ROA-DC01"
strMBStore = "MMBS2 (ROA-DC01)"
strStoreGRP = "Second Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
' Line 301
Case "AsstMBS3"
strExchSRVR = "ROA-DC01"
strMBStore = "AMBS3 (ROA-DC01)"
strStoreGRP = "Third Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
Case "MngrMBS3"
strExchSRVR = "ROA-DC01"
strMBStore = "MMBS3 (ROA-DC01)"
strStoreGRP = "Third Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
Case "AsstMBS4"
strExchSRVR = "ROA-DC01"
strMBStore = "AMBS4 (ROA-DC01)"
strStoreGRP = "Forth Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
Case "MngrMBS4"
strExchSRVR = "ROA-DC01"
strMBStore = "AMBS4 (ROA-DC01)"
strStoreGRP = "Forth Storage Group"
strAdminGRP = "First Administrative Group"
strExchORG = "yourdomain"
End Select
' Creates the users mailbox
Set objIADSUser = GetObject("LDAP://CN=" & strCN & "," & strLDAPdn)
objIADSUser.CreateMailbox("LDAP://CN=" & strMBStore & ",CN=" & strStoreGRP &
",CN=InformationStore,CN=" & strExchSRVR & ",CN=Servers,CN=" & strAdminGRP &
",CN=Administrative Groups,CN=" & strExchORG & ",CN=Microsoft
Exchange,CN=Services,CN=Configuration,DC=yourdomain,DC=com")
objIADSUser.SetInfo
' The path is as follows: CN=name of Mailbox Store,CN=name of Storage
Group,CN=InformationStore,CN=name of Exchange Server,
' CN=Servers,CN=name of Administrative Group,CN=Administrative
Groups,CN=name of Exchange Organization,CN=Microsoft Exchange,
' CN=Services,CN=Configuration,DC=xxxxxx,DC=xxx
'Set objIADSUser = GetObject("LDAP://CN=" & strCN & "," & strLDAPdn)
'objIADSUser.CreateMailbox ("LDAP://CN=AMBS3 (ROA-DC01),CN=Third Storage
Group,CN=InformationStore,CN=ROA-DC01,CN=Servers,CN=First Administrative
Group,CN=Administrative Groups,CN=yourdomain,CN=Microsoft
Exchange,CN=Services,CN=Configuration,DC=yourdomain,DC=com")
' Set the user account objects home drive information in AD
objUser.Put "homeDirectory", "\\" & strUserSrvr & "\" & strHomeFldr & "\" &
LCase(strUser) & ""
objUser.Put "homeDrive", "H"
' Create the user account objects home drive
Set objFSO = CreateObject("Scripting.FileSystemObject")
Set objFolder = objFSO.CreateFolder("\\" & strUserSrvr & "\" & strHomeFldr &
"\" & LCase(strUser))
' line 350
' Change the permissions on the user account objects home drive
Set objShell = CreateObject("Wscript.Shell")
strHome = "\\" & strUserSrvr & "\" & strHomeFldr & "\" & LCase(strUser)
objShell.Run ("SetACL.exe -on """ & strHome & """ -ot file -actn ace " &
"-ace ""n:yourdomain.com\" & strUser & ";p:change""")
' Create the user account objects public folder
Set objFSO = CreateObject("Scripting.FileSystemObject")
Set objFolder = objFSO.CreateFolder("\\" & strUserSrvr & "\" & strPublicFldr
& "\" & strPubFldrName)
objUser.SetInfo
Set objRootDSE = Nothing
Set objOU = Nothing
Set objUser = Nothing
Set objGroup = Nothing
Set objFSO = Nothing
Set objFolder = Nothing
Set objShell = Nothing
Set objIADSUser = Nothing
End Sub
Sub Reload
Location.Reload(True)
End Sub
Sub bodyLoaded()
window.ResizeTo 600,510 ' WIDTH, HEIGHT
End Sub
</script>
</head>
<body onLoad="bodyLoaded()">
<p align = "center"><img src="\\roa-dc01\images$\verisign.bmp" width="189"
height="46"></p>
<p align = "center" class="style2">User Account Object Creation Page.</p>
<table width="289" border="0" align="left">
<tr>
<td width="89"><span class="style5">*</span>Login ID: </td>
<td width="144"><input type="text" name="TextUser"></td>
</tr>
<tr>
<td><span class="style5">*</span>First Name:</td>
<td><input type="text" name="TextFirst"></td>
</tr>
<tr>
<td>Middle Initial: </td>
<td><input type="text" name="TextInitial"></td>
</tr>
<tr>
<td><span class="style5">*</span>Last Name: </td>
<td><input type="text" name="TextLast"></td>
</tr>
<tr>
<td><span class="style5">*</span>Site: </td>
<td align="left">
<select size="1" name="Site">
<option value="Roanoke">Roanoke</option>
<option value="Richmond">Richmond</option>
<option value="Blacksburg">Blacksburg</option>
<option value="Raleigh">Raleigh</option>
<option selected value="LocationAlert">-Select Users Location-</option>
</select></td>
<tr>
<td><span class="style5">*</span>Mailbox: </td>
<td align="left">
<select size="1" name="MailBoxStore">
<option value="AsstMBS1">Assistant 1</option>
<option value="MngrMBS1">Manager 1</option>
<option value="AsstMBS2">Assistant 2</option>
<option value="MngrMBS2">Manager 2</option>
<option value="AsstMBS3">Assitant 3</option>
<option value="MngrMBS3">Manager 3</option>
<option value="AsstMBS4">Assitant 4</option>
<option value="MngrMBS4">Manager 4</option>
<option selected value="LocationAlert">-Select Users Mail Box-</option>
</select></td>
</table>
<p> </p>
<p> </p>
<p><br>
<input type="button" name="Submit" value="Submit" onClick="CreateAccount">
</p>
<p>The new user account object will have an initial password of p@ssw0rd.
</p>
<p>The new employee will also be required to change his/her password at
first logon. </p>
<p class="style3"><span class="style6">*</span> Indicates Required Field</p>
<br />
<br />
<br />
<p>
<input id="reloadbutton" class="button" type="reset" value="Clear Form"
name="reload_button" onClick="Reload">
</p>
<p>
<input type="button" value=" Exit " name="close_button"
onClick="Self.Close">
</p>
</body>
</html>
Code ends here-------------------------
Please feel free to use this as you see best. However, please use this in a
test environment first and make sure that you make all of the modifications
necessary so that it works in your environment. This works in a WIN2000 AD
environment with Exchange 2000. Do not know if it would work in WIN2003 /
Exchange 2003. I am not responsible for any damage that using this might
cause. So, please figure everything out in a test lab' then use it in a
production environment.
If you do use this and make any changes to it or see something that could be
better please let us know. This is a work in progress......
--
Cary W. Shultz
Roanoke, VA 24012
WIN2000 Active Directory MVP
http://www.activedirectory-win2000.com
(soon to be updated!!!)
http://www.grouppolicy-win2000.com
(soon to be updated!!!)