Solution:
To work around this Limitation, a command action can be invoked in the On Success Uninstall event for the Catalog Item. The following steps can be used to implement this:
- Create a new text file named removeFromGroup.ps1.
- Edit removeFromGroup.ps1 and add the following to the script:
param(
[string]$groupName, #specify a custom variable containing the group name
[string]$userName #pass the variable ##UserName##
)
Remove-ADGroupMember -identity $groupName -Members $userName -Confirm:$false
- Under Site Management -> Commands and Actions -> Script Commands, create a new command named removeFromGroup. Under Command File, select the removeFromGroup.ps1 created previously.
- For the command arguments, specify the following:
##Custom_GroupName## ##UserName##
Note that ##Custom_GroupName## is a custom variable that will be created in the next step. The variable ##UserName## resolves to the target user name. The following screen capture illustrates the Command settings:
- To create the custom variable, open the catalog item, and go to the Custom Variables tab. Select "Add New Variable, and set the variable name to "GroupName". Set the value to the name of the AD Group where the user will be removed. The following screen capture shows the custom variable configuration:
- Next, go to the Actions tab of the catalog item, and select the "On Success Uninstall" event. Under Add an action, select Command Execution for "Select a service", and "RemoveFromGroup" action for "Select a method or command". Finally, select the Add button to save the action. The following illustrates:
After following these steps, the target user should be removed from the specified group name when after the uninstallation successfully com.
