We are currently in the process of creating a script to allow the HR department to update specific details of a user account: job title, department, ect. without having to go via the servicedesk.
The script is written however there are a couple of issues we are seeing
1) when run by a non-domain admin the set-ADUser command fails despite the user group having RW on all users General, Public, and Personal information
2) when running the script against a remote target Using Enter-PSSession the following error is recieved
Get-ADUser : Unable to contact the server. This may be because this server does not exist, it is currently down, or it
does not have the Active Directory Web Services running.
At C:\Modify User Details.ps1:67 char:20
+ ... ray]$User = Get-ADUser -Filter {(GivenName -like $FirstName) -and (Su ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : ResourceUnavailable: (:) [Get-ADUser], ADServerDownException
+ FullyQualifiedErrorId : ActiveDirectoryServer:0,Microsoft.ActiveDirectory.Management.Commands.GetADUser
The same script works if you run it on the machine in question however