Recipe 6.5 Moving a User

6.5.1 Problem

You want to move a user object to a different container or OU.

6.5.2 Solution Using a graphical user interface
  1. Open the Active Directory Users and Computers snap-in.

  2. If you need to change domains, right-click on "Active Directory Users and Computers" in the left pane, select Connect to Domain, enter the domain name, and click OK.

  3. In the left pane, right-click on the domain and select Find.

  4. Type the name of the user and click Find Now.

  5. In the Search Results, right-click on the user and select Move.

  6. Browse to the new parent container or OU and click on it.

  7. Click OK. Using a command-line interface
> dsmove "<UserDN>" -newparent "<NewParentDN>" Using VBScript
' This code moves a user from one container to another.
strUserDN = "<UserDN>"     ' e.g. cn=rallen,cn=users,dc=rallencorp,dc=com
strOUDN = "<NewParentDN>"  ' e.g. ou=Sales,dc=rallencorp,dc=com
' ------ END CONFIGURATION ---------

Set objUser = GetObject("LDAP://" & strUserDN)
Set objOU = GetObject("LDAP://" & strOUDN)
objOU.MoveHere objUser.ADsPath, objUser.Name

6.5.3 Discussion

Moving a user object between OUs in the same domain has no direct impact to the actual user. The only thing to be cautious of is the impact of moving the user to a new OU that may have different security or GPOs applied to it.

6.5.4 See Also

Recipe 4.17 for moving objects between OUs

    Chapter 3. Domain Controllers, Global Catalogs, and FSMOs
    Chapter 6. Users
    Appendix A. Tool List