How to provide a Self Service Request to Manage your Active Directory Environment in au2mator Self Service Portal.

So your IT Staff, Helpdesk, or Managers can easily temporarily add a User to a Group.

In this Video and Post, we will show you how au2mator – Self Service Portal can be used to provide Information live from your Microsoft 365 environment.

au2mator Self Service Portal is providing a front-end for your Microsoft Automation.

System Center Orchestrator, SMA, Azure Automation, and PowerShell Scripts can be used to be triggered by an au2mator Service.

So you can provide easy access to your Active Directory Environment without any security risk and the possibility of a human error.

And by providing a Self Service with au2mator, you decrease the load in your IT Department, increase the Quality by Automation.

Also, the Self Service User will be much more satisfied cause they receive an immediate response and solution to their request.

How to build with PowerShell

This chapter will show you how to configure the Service with our “ready to use” PowerShell Script.


Navigate to the Download Section at the End of this Page to get the latest PowerShell Script

Download the File into your au2mator PowerShell Directory and adjust the Variables, if needed.

Would you please make sure your Environment is ready to use this Feature? Please enable “Privileged Access Management Feature” in your Active Directory.

See for more details:


How to build with Azure Automation

will be available soon

How to build with Orchestrator

will be available soon

Build au2mator Service

Log in as admin to au2mator Self Service Portal

Navigate to Services and click New to create a new Service

Enter NameDescription, select a Service Group and choose a nice Image

Navigate to Runbooks and select your Automation Service and Runbook of your choice

Next, navigate to Question and configure each Question

Question: c_User

Question: Choose User

Required: true

Order: 1

Type: LDAP Query

Query: (&(objectclass=user)(mail=*))

Values: Displayname, mail


Question: c_Group

Question: Choose Group

Required: true

Order: 2

Type: LDAP

Query: (objectclass=group)

Values: Name


Question: c_Type

Question: Choose Type

Required: true

Order: 3

Type: Options

Options: Duration;EndDate


Question: c_EndDate

Question: Select EndDate

Required: true

Order: 4

Type: Date Time ( DD-MM-YY hh:mm:ss)

Condition: c_Type equals EndDate


Question: c_TTL

Question: Enter Duration in Minutes

Required: true

Order: 5

Type: INT

Condition: c_Type equals Duration


Feel free to configure other Questions or Service Options. Click Save to finish the work


Here is a list of Downloads for this Service

PowerShell on Github: au2mator/AD-Time-Based-Group-Membership (



Our Scripts on TechNet Gallery, GitHub, or this Blog are provided without any Support.

If you need help to customize this Service or create a custom Workflow, contact our Partner or user of our Premier Services.

See our Partner List:

See our Premier Services for more details: