Extension attribute based on OU or Security Group

New Contributor II


I'm trying to create an extension attribute based on whether a computer belongs to a particular OU or security group in AD. In our environment, we do not have a connection to LDAP in the JSS or any sort of connector, but our computers are bound to our domain. I was hoping to use the endpoints to search for themselves in a particular group and then base an extension attribute off of it. However, I can't seem to use DSCL to read the actual workstations in a group. Any suggestions? Is this possible?