Showing results for 
Search instead for 
Did you mean: 
Regular Visitor

Power Automate Desktop - Active Directory - Get user info



I'm trying to get user info and to modify a group membership by adding/removing a user using Power Automate Desktop. Everything else so far i.e. Connect to server using LDAP path, Get group info using this connection, Get group members using this connection gets me all details.


It completely fails to identify the AD user in any of the method I tried i.e. Get user info or Modify group. In both of these methods, its completely fails to identify the user using Distinguished name I'm supplying. The Distinguished name is also correct as I pulled it up and verified using two methods i.e.


1. Windows Explorer -> Security for any Folder -> Search User -> Columns -> Distinguished Name

2. .Net C# Code -> Object of UserPrincipal -> FindByIdentifity -> DistinguishedName property


Both method shows same vale for DN but same DN in Power Automate actions fails to resolve the user.


Please suggest if there is any known resolution for this. Also, instead of DN is there a way to provide User ID or Email for these actions as a more straight forward way to find and act on users.




Resolver II
Resolver II

Try Removing LDAP:// within the action.
The LDAP path should be something like this for server dc=prefix,dc=example,dc=com

Regular Visitor

Hi @Rkv_ , thanks for responding... no luck with that as well... 😞

Maybe you shouldn't have the OU. 


Mine worked right away with 'CN=XXX XXXX, CN=Users, DC=XXXX, DC=XXX'


I looked up the distinguished name on the AD server

No Luck 😞

New Member


I have managed to get this to work. Get user info and added the user to group successfully. The correct distinguished names have to be used. 


Connect to Server - LDAP path: LDAP://dcname.domain.local (you can check distinguished name attribute on your domain in AD users and computers. Your domain might be


Get user info - Distinguished name: CN=Nimeshin Govender,OU=Users,DC=domain,DC=local (depending on which OU the account is located eg. if the account is located in IT OU inside of Users OU then OU=IT,OU=Users,DC=domain,DC=local )


You can get the distinguished name including the full OU path and domain on the AD user object. Just view the attribute Editor tab and look for distinguishedName attribute and click view button, copy and paste the value. Ensure Advanced Features is ticked on you AD snap in so you will see this tab. 


Hope this helps.

Helpful resources

Power Platform Conf 2022 768x460.jpg

Join us for Microsoft Power Platform Conference

The first Microsoft-sponsored Power Platform Conference is coming in September. 100+ speakers, 150+ sessions, and what's new and next for Power Platform.

New Ideas Forum MPA.jpg

A new place to submit your Ideas for Power Automate

Announcing a new way to share your feedback with the Power Automate Team.

MPA Virtual Workshop Carousel 768x460.png

Register for a Free Workshop

Learn to digitize and optimize business processes and connect all your applications to share data in real time.

MPA Licensing.jpg

Ask your licensing questions at the Power Automate AMA!

Join Priya Kodukula and the licensing team, super users and MVPs to find answers to your questions on Power Automate licensing.

Top Solution Authors
Top Kudoed Authors
Users online (2,374)