Peoplepicker-serviceaccountdirectorypaths: Stsadm property (Office SharePoint Server)
Updated: December 6, 2007
Applies To: Office SharePoint Server 2007
Topic Last Modified: 2012-04-10
Enables a farm administrator to manage the site collection that has a specific organizational unit (OU) setting as defined in the Setsiteuseraccountdirectorypath setting.
|The Peoplepicker-serviceaccountdirectorypaths property was first introduced in Microsoft Office SharePoint Server 2007 Service Pack 1.|
stsadm -o setproperty
-propertyvalue <A list of OU names>
The syntax for the getproperty operation is:
stsadm -o getproperty
|You can substitute -pn for -propertyname and -pv for -propertyvalue.|
The following table shows possible values.
Gets or sets the name of the property.
A semicolon separated list of distinguished names in the following form:
Typically, a path to the URL of the Web application, in the form http://server_name.
In the Example section, http://contoso is the name of the Web application that is targeted.
When an administrator uses Stsadm to manage the site collection, the administrator will be added as a user to the site collection. If the Setsiteuseraccountdirectorypath operation is set, it may block the administrator to manage the site collection if the administrator does not belong to the organization unit (OU). To permit the administrator to manage the site collection, the administrator needs to set the peoplepicker-serviceaccountdirectorypaths operation. If the administrator belongs to one of the OUs specified in the peoplepicker-serviceaccountdirectorypaths operation, the administrator will be allowed to manage the site collection.
Before the peoplepicker-serviceaccountdirectorypaths operation will work, the Setsiteuseraccountdirectorypath operation must be set and contain a value.
|This property cannot be used to set multiple OUs for a site collection. Only one site user directory path can be set for a site collection.|
In this example, the following environment setting is used:
FarmAdmin1 is a user in "OU=FarmAdmin, DC=ContosoCorp, DC=Local"
We have a FarmAdmin1 user that is in a separate OU definition: "OU=Sales, DC=ContosoCorp, DC=Local" and OU=Marketing, DC=ContosoCorp, DC=Local. The FarmAdmin1 is not a part of this OU unit, because FarmAdmin1 does not belong in OU=Sales or OU=Marketing, therefore FarmAdmin1 is not able to manage the site collection http://contoso.
To allow the farm administrator under the FarmAdmin OU in the Contoso corporate domain to manage http://contoso, use the following syntax:
stsadm -o setproperty -url http://contosto -pn "peoplepicker-serviceaccountdirectorypaths" -pv "OU=Farm Admin,DC=ContosoCorp,DC=local
To view the current setting for the serviceaccountdirectorypaths property, use the following syntax:
stsadm -o getproperty -url http://server_name -pn peoplepicker-serviceaccountdirectorypaths