Active Directory Users, Computers, and Groups: One of the most common tasks for administrators is the creation of Active Directory objects. Windows Server 2008 includes several tools you can use to create objects. The specific tool you use depends on how many objects you need to create, the time frame available for the creation of these groups, and any special circumstances that are encountered such as importing users from an existing database.
Generally, when crating a single user or group, most administrators use the Active Directory Users and Computers tool. However, when you need to create many users or groups in a short time frame or you have an existing database from which to import these objects, you will want to choose a more efficient tool. Windows Server 2008 provides a number of tools you can choose according to what you want to accomplish.
Must Check:- Basic Component of Active Directory Tools
Methods for Creating Multiple Users and Groups
The following list describes the most commonly used methods for creating multiple users and groups.
Batch Files: These files, typically configured with either a .bat extension or a .cmd extension, can be used to automate many routine or repetitive tasks. To create or delete user and group objects, batch files are frequently used with various command-line tools available in Windows Server 2008.
Comma-Separated Value Directory Exchange (CSVDE): This command-line utility is used to import or export Active Directory information from a comma-separated value (.csv) file. These files can be created in any text editor. This command-line utility only imports or exports new objects; It cannot modify or delete existing objects.
LDAP Data Interchange Format Directory Exchange (LDIFDE): Like CSVDE, this utility can be used to import or export Active Directory information. It can be used to add, delete, or modify objects in Active Directory, in addition to modifying the schema, if necessary. It also can be used to import data from other directory services, such as Novell NetWare.
Windows Script Host (WSH): Script engines run script files created using Microsoft Visual Basic Scripting Edition (VBScript) or Jscript. WSH allows the scripts to be run from a Windows desktop or a command prompt. The run-time programs provided to do this are WScript.exe and CSript.exe, respectively.
These tools all have their roles in network administration; it is up to you to select the best tool for a particular situation. For example, you might have two tools that can accomplish a job, but your first choice might be the tool that you are most familiar with or the one that can accomplish the task in a shorter of time.
Below you will see some step-by-step examples of crating users, computers and groups using the GUI and command-line utilities.
Create Active Directory Users, Computers, and Groups
We divide this section in two parts. Part A of this exercise assumes that you are signed on to a Windows Server 2008 computer with local administrator credentials. Part B of this exercise covers domain accounts and assumes that you are signed on to a Windows Server 2008 Active Directory controller using Domain Administrator credentials. Also See: What is Active Directory DNS?
Part A – Working with Local User and Group Objects
- Log on to the member server using local administrator credentials.
- Click the Start button, click Administrative Tools, and then click Computer Management.
- Browse to System Tools, Local Users and Groups, and then Users.
- To add a new local user account, right-click the Users folder and click New User. The New User window is displayed.
- Enter the appropriate values in the following fields and then click Create.
- User name
- Full name
- Confirm Password
- To create a new group object, right-click the Groups folder in the left pane and click New Group. The New Group window is displayed. Enter the appropriate values in the following fields:
- Group Name
- To add users to the group, click Add. The select Users screen is displayed.
- Enter the name of the user account that you wish to add, and then click OK.
- Click Create and then close the Computer Management console.
- Close all open windows and then log out of the member server.
You may be like this: System requirement to install Active Directory
Part B – Working with Domain User and Group Objects
- Log on to the domain controller using Domain Admin credentials.
- Click the Start button, click Administrative Tools, and then click Active Directory Users and Computers.
- Expand the <domain name> node.
- Right click Users and select New User. The New Object – User is displayed. Enter the appropriate values in the following fields and click Next.
- First name
- Last name
- User logon name
- Key an initial password for the user in the password field. Key the same initial password in the confirm password field. Click Next.
- Click Finish.
- Right-click Users, click New, and then Click Group. The New Object – Group window is displayed.
- Enter the appropriate values in the following fields and click OK to create the group. The group name field will populate automatically:
- Group name: FinanceUsers
- Group scope: Global
- Group type: Security
- To create objects from the command prompt. Click Start button, key cmd, and then press Enter.
- At the command prompt, key the following command and then press Enter. Substituting the appropriate domain distinguished name.
Dsadd user “cn=Robert Brown,cn=Users,<domain dn>” –samid rbrown –pwd WLYcert#1 –mustchpwd yes –disabled no
- To create group object at the command line, key the following command and then press enter. Substituting the appropriate domain distinguished name.
Dsadd group cn=Accounting, cn=Users, <domain dn> -desc “Accounting Users” – secgrp yes –scope g
- In the Active Directory Users and Computers MMC console, click Users in the left pane, press F5 to refresh the listing in the right pane to confirm that the user and group objects that you just created at the command line are present.
So guys, these are the graphical way to create and add Active Directory Users, Computers and Groups in Windows Server 2008.