Creating Organizational Units

Owned by Universal Importer for Confluence
Last updated: Jul 02, 2018 by Phillip Hanegan
3 min read
Home / Authorization RBAC/ABAC / Business Roles and Locations / Current: Creating OUs


This topic demonstrates how to create a new Active Directory OU in EmpowerID.

Prerequisites

EmpowerID must be connected to Active Directory.


To create an OU


  1. In the Navigation Sidebar, expand Identities and click Business Roles.
  2. From the Business Roles and Locations management page, click the Actions tab and click Create OU.



  3. In the Select Parent OU lookup that appears, do the following:
    1. Search for the parent OU under which you want to create the new OU and select it by clicking the node for it in the tree.

    2. Click Submit.

      For immediate processing, leave Wait to See Results selected. If you clear Wait to See Results and click Submit, the process idles and EmpowerID creates a task for it, routing it to any Person with the delegations to continue moving the people.




  4. In the Create OU form that appears, do the following:
    1. Type a name for the new OU in the Name field.
    2. Optionally, type a description in the Description field.
    3. Select Do Not Allow Delete in EmpowerID to prevent the deletion of the OU in EmpowerID.

    4. Click Submit.

      For immediate processing, leave Wait to See Results selected. If you clear Wait to See Results and click Submit, the process idles and EmpowerID creates a task for it, routing it to any Person with the delegations to continue moving the people.




  5. If you left Wait to see results selected, click OK to close the Operation Execution Summary.


To verify that the OU was created in EmpowerID

  1. From the Business Roles and Locations management page, click the Locations tab and search for the OU you just created.

    A record of type Active Directory Organizational Unit (System) for OU appears in the grid.



  2. In the Navigation Sidebar, expand Compliance and Reports and click Audit Log.

  3. In the Audit Log, click the Recently Created Objects tab and search for the OU.

    A record for the OU appears in the grid.



To verify that the OU was created in Active Directory


  1. On a server with the Active Directory PowerShell module, run the following PowerShell cmdlet (substituting the name of the OU in the cmdlet with the OU you created):

    Get-ADOrganizationalUnit -Filter {name -eq "Customers"}
  2. A record for the OU is returned.