That's not really self-service though is it? I would consider self serviceThat is exactly the definition of self-service that I was operating under.
something that allows a request (anonymous web connection since they don't
have an account?) to be automatically sent into a workflow process and
approved and created or denied and a response sent back. A response sent
regardless would be optimal but may not be practical if the user has not
account or email store.
There are some things that have to be determined from the original post suchWell, the particulars haven't exactly been spelled out yet... While I agree with the former comments about data integrity with in the directory, there seems to be some desire to automate this process as much as possible. I was really testing the waters to see how pervasive such tools were in deployment and who the players in the space are - in a brief afternoon of googling, I've discovered that vendors such as Novell, Waveset, BindView provide some level of solution to the question posed.... along with the roll-your-own approach that was described. Also some identity managment products spill over in regards to functionallity. I certainly have some more requirements gathering to do.
as who can make the request? What's the bare minimum access and
communications that the requestor must have?
How does the requestor make the request?
I personally can imagine various iterations of this: from a lowly manual process to an integrated work-flow of some complexity... but my assumption is that the individual will have some form of credential (Employee #, SS# (ew!) or some such) to validate his identity and this will pull the trigger to create system accounts on an AD DC.
List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
