Hello,

I'm trying to write a custom IIF statement. I want employees according to their Employee Type to be placed in certain groups. I have an example code I wrote up, but it seems to give me an error:

(IIF(Eq(EmployeeType,"Contractor"),"CN=ACCOUNTS",OU=HOU,OU=Groups,DC=FIM-TEST"))

Is this correct?

Not its not. 

Where is test mentioned here anywhere in your statement.? You also need an else.

How are you placing the user into the FIM-TEST?? Where is this IFF being executed.

This statement says, if you are contractor, add to FIM-TEST, else do nothing.  But I am not clear on the plumbing of this method you want to use. Where is this IFF executed.

(IIF(Eq(EmployeeType,"Contractor"),"FIM-TEST",""))

You cannot add a user to a group like that.

You need to make the group FIM-TEST dynamic and add a statement, EmployeeType=Contractor

This will automatically add a user to that group if EmployeeType=Conctractor and remove if the type changes.

Nevermind, got it.

No,

I have explained the Group Membership to you on another thread. Sync rule only synchs the groups. Membership is done within FIM.

I don't think you can change a manual group to dynamic, so you will have to delete it and recreate it as dynamic. You need to make sure to join the groups and ensure the AD membership does not change.

And again, as before suggested to you - If you are not familiar with these concepts, be careful!