25
Chapter 3: Manage OUs, Groups, Users, and Computers
File Format:
When you prepare a file to import, place each user account on an individual row. Each piece
of information should be separated by a
Tab
key in the following order:
1. Username 2. Password 3. Description 4. Email
5. First name 6. Last name 7. Full name
8. Profile path 9. Login script 10. Home directory
The format of an import file should meet the following requirements:
• The import file must be in UTF-8 format.
• The order of columns must be correct (from left to right).
• The imported passwords must comply with the password policy.
• Each line of information must contain nine tabs. If you want to skip a piece of information
(e.g., Description), you still need to enter a Tab key to separate the empty value from the
next value (e.g., Email).
Edit User Properties
1. Select the user you wish to edit on the Users & Computers page, and click Action > Edit.
You can select multiple users by pressing and holding the Ctrl or Shift key.
2. Go to the Account tab in the editor window and the following user properties are available
for editing:
• User login name: You can rename this user in this field.
• Login Hours: Click this button to customize logon hours of the user. In the configuration
window, click Deny or Allow and select any grid cells. To select the entire day or hour in
each day, click the day or hour. After arranging the schedule, click OK to save the settings.
• Usable Devices: Click this button to select which computers this user can access.
• Lock out this account: This option is enabled when an account is locked out because of
account lockout policies. You can unlock the locked account by disabling this option.
• Force this account to change password at next login: This account will be asked to
change the password upon next login to Windows or Synology NAS.
• Disallow the user to change password: This user will not be able to change the
password on their own.
• Password never expires: The user's password will never expire. We suggest enabling
this option only for administrators.
• Store passwords using reversible encryption: Enabling this option will compromise
domain security. This option is not recommended unless demands of domain client
services take higher priority over password security.
• Disable this account
• Require smart card for interactive login
• Disallow delegation of this sensitive account: Services on client devices of the domain
will not be able to access resources on behalf of this account.