Setup
      Back to home
      1. Knowledge Base
      2. Active Directory
      3. Setup

      Manage AD Users

      Adding and editing users in Active Directory.

      This quick start guide will provide an overview of managing users via the MyCloudIT portal. This can be used for Microsoft Remote Desktop Services (RDS) and Azure Virtual Desktop (AVD/WVD)  deployments. The MCIT portal communicates with your domain controller to perform active directory functions increasing efficiency of common day to day AD tasks. MCIT User management does not require the MCIT RDS agent.

      Acronyms used in this document:

      • AAD - Azure Active Directory (Microsoft cloud hosted as a service)
      • AD - Active Directory (An instance of an Microsoft Active Directory Domain Services install on a physical server, VM in azure, etc)
      • RDS - Remote Desktop Services (Microsoft's suite of services for delivering thin clients with a full desktop or 'remote apps' via the Windows server operating system)
      • AVD - Azure Virtual Desktop (Microsoft's platform for delivering Windows shared/personal virtual desktops/applications via Azure) - AKA WVD
      • AADC-CS - Azure Active Directory Connect Cloud Sync (One of Microsoft's systems you can use for facilitating AD hybrid identity)

      Adding a User Account

      Machine generated alternative text: Ocal Domain Controlle' mycIoudlT New User Registration First Name:* Last Name:* Display Name:* dan Email !epor Dan Williams Dan Williams dan@example.com poc_local Al-it-generate password Ippor Re-type password:* SOC6Yl(25y6tPAAA Change password on the first login Description: Sales assistant located in the Dallas office CANCEL CREATE

      1. After you complete the Initial Setup,  then click "+ADD" to add a new AD user account.
      2. Fill out all the details and click Create.

      Note: Not all options are available on user creation, some options require you to edit the user after creation.

      Editing a User Account

      Machine generated alternative text: AD User General Info LJser Groups Name: dan O DISABLE C-• SET PASSWORD Enabled First Name: Last Name: Display Name: Mail: User Principal Name: DELETE USER s-1-5-21-24830486-8088541820-8678291459-1601 Dan Williams Dan Williams dwilliams@example.com dan Password never expires user cannot change password poc_local Description: Sales assistant located in the Rio office CANCEL NEXT

      1. After you complete the Initial Setup, the users table is displayed.  Click on the ellipses  next to the user you want to edit and then click Open.
      2. Change the details you want to edit and then click Next.
      3. On the User Groups screen you can edit the AD groups that the user is a member of.
        1. Note: It is strongly encouraged that everyday users are never members of privileged access security groups like 'Administrators' or 'Domain Admins'. If certain tasks require some form of elevated access then this can be achieved other ways, reach out to your local Windows security professional or MCIT support for general advice.
      4. Once groups are selected, click UPDATE to set the users new details.
        1. Note: You can display more groups by selecting "Items per page 100" at the bottom of the user groups screen.

      User Management

      • To manage user access for RDS collections and AVD host pools, follow these instructions: Assign AD User Access