Creating an Object

To create an object in Active Directory, you have to specify the objectClass, relative distinguished name (RDN) value, and any other mandatory attributes that are not automatically set by Active Directory. Some of the automatically generated attributes include objectGUID, instanceType, and objectCategory.

In each solution below, an example of adding a user object named jsmith is shown. Modify the examples as needed to include whatever class and attributes you need to create.

Using a graphical user interface

  1. Open ADSI Edit.
  2. If an entry for the naming context you want to browse is not already displayed, do the following:
  3. Right-click on ADSI Edit in the right pane and click Connect to….
  4. Fill in the information for the naming context, container, or OU you want to add an object to. Click on the Advanced button if you need to enter alternate credentials.
  5. In the left pane, browse to the container or OU you want to add the object to. Once you’ve found the parent container, right-click on it and select New >  Object.
  6. Under Select a Class, select user.
  7. For the cn, enter jsmith and click Next.
  8. For sAMAccountName, enter jsmith and click Next.
  9. Click the More Attributes button to enter additional attributes and values.
  10. Click Finish.

Using a command-line interface

Create an LDIF file called create_object.ldf with the following contents:

dn: cn=jsmith,cn=users,dc=rallencorp,dc=com
 changetype: add
 objectClass: user
 samaccountname: jsmith

Then run the following command:

> ldifde -v -i -f create_object.ldf

It is also worth noting that you can add a limited number of object types with the dsadd command. Run dsadd /? from a command line for more details.

Using VBScript

set objUsersCont = GetObject(LDAP://cn=users,dc=rallencorp,dc=com")
 set objUser = objUsersCont.Create("user", "CN=jsmith")
 objUser.Put "sAMAccountName", "jsmith" ' mandatory attribute in W2K