Purpose:
To confirm creation of a new user in AD, apply licenses, set up security groups, and assign device for provisioning.
To pre-provision the device, follow the instructions here.
Using Remote Desktop Connection, use your admin credentials to sign in to the az-itmanagement server.
Click Show Options to permanently put in your credentials to connect. Right click the taskbar icon to Pin to Taskbar.
Click Connect. Type in your admin password.
If not already pinned, in the search bar on the taskbar, search for Active Directory and open Active Directory Users and Computers.
On the left side underneath Active Directory Users and Computers [AZ-DC01.lkeeley.com], click the sideways carrot and open up lkeeley.com, then My Business.
Look for your new hire account either under zPreProvision New Hires or zUKG NewHires.
If the account you found does not have an email address in the E-Mail Address column, you have to run a script to add it.
Go to File Explorer. Go to the E:\Scripts folder and open the file newuserstocreateUKG.csv.
Put in the new hire's UPN and what hardware and/or software they may need. After typing the UPN/future email address, it will create a link. Right click on the link and Remove Hyperlink. Click the Save icon to save the file.
Close the Excel file. Open the tempusers.csv file in the same location. Clear out all data EXCEPT THE HEADER COLUMN. Save the file using the Save icon.
Open PowerShell as Administrator.
Type "changed", hit TAB (it will bring in the command .\ChangeDir.ps1), and then hit enter.
Type "creds", hit TAB (it will bring in the command .\Creds.ps1), and then hit enter. It will ask you to enter your admin credentials.
Type "create", hit TAB (it will bring in the command .\CreateNewUKG.ps1), and then hit enter.
Close PowerShell. Refresh Active Directory and confirm email has been created.
Now you can go into Intune and confirm they are in the correct E3 license groups as well as ZScaler groups.