Thanks Graham. That fixed the problem and the script works now. I
actually am able to set the password during the account creation
process. I have seen some reports of people unable to do that.
Another curiosity that may interest someone is that it appears I can not
modify a user and add a group to memberOf for that user.
However, I can modify a group and add that user to the group. So it
works one way, but not the other.
The big curiosity now is figuring out how to set the accountExpires
property. Apparently its value is the number of 100 nanosecond intervals
since January 1 1601. If the account has no expiration date, then it
gets set automatically to '9223372036854775807'
Graham Barr wrote:
"ou=my guest accounts,ou=subOU,ou=myOU,dc=ad,dc=myorg,dc=edu" probably
does.
you need to prefix that with the RDN for the entry.
