Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

"ACCOUNT_TERMINATION_ACTION" missing in LDAP/AD connection config

Go to solution
ASA
Regular Contributor II
Regular Contributor II

‎04/30/2024 02:42 AM

Hi,

According to this documentation:

Understanding the Integration Between EIC and LDAP Interfaces (saviyntcloud.com)

There should be an option "ACCOUNT_TERMINATION_ACTION" in the connection of type AD. This option is missing.

Does anyone know if this is deprecated maybe?

How do I get an LDAP connection to mark accounts as deleted if not found during import?

0 Kudos
6 REPLIES 6

Go to solution
rushikeshvartak
All-Star
All-Star

‎04/30/2024 10:04 PM

You can defined in status threshold config


Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

Go to solution
ASA
Regular Contributor II
Regular Contributor II
In response to rushikeshvartak

‎05/01/2024 11:41 PM

Hi Rushikesh,

can you give an example config? I can't find anything like it in the docs.

0 Kudos

Go to solution
Raghu
All-Star
All-Star

‎05/01/2024 06:23 AM

@ASA  you can use "inactivateAccountsNotInFile": false, it will suspended :

{
"statusAndThresholdConfig": {
"statusColumn": "customproperty17",
"activeStatus": [
"512",
"544",
"66048"
],
"inactiveStatus": [
"546",
"514",
"66050"
],
"deleteLinks": false,
"accountThresholdValue": 1000,
"correlateInactiveAccounts": true,
"inactivateAccountsNotInFile": false,
"lockedStatusColumn": "customproperty17",
"lockedStatusMapping": {
"Locked": [
"1"
],
"Unlocked": [
"0"
]
}
}
}

inactivateAccountsNotInFile: Specify true or false to instruct the connector to mark accounts that are not imported during import as inactive or SUSPENDED FROM IMPORT SERVICE. When set to
true, accounts that are not imported during import are marked as inactive. The default value is false.

 


Thanks,
Raghu
If this reply answered your question, Please Accept As Solution and hit Kudos.

Go to solution
ASA
Regular Contributor II
Regular Contributor II
In response to Raghu

‎05/01/2024 11:41 PM

Hi Raghu,

thanks for the reply. This already works fine but what I actually need is to recognise the accounts as deleted instead of suspended.

0 Kudos

Go to solution
ASA
Regular Contributor II
Regular Contributor II
In response to ASA

‎05/02/2024 12:14 AM

Wait, nevermind. I seem to have mixed up something during testing on Tuesday 🙂

Setting inactivateAccountsNotInFile to false does exactly what I want.

Thanks!

0 Kudos

Go to solution
Raghu
All-Star
All-Star
In response to ASA

‎05/02/2024 02:41 AM

@ASA  it is system generate , we can do it think so, if want you  can achive via enhanced query update.


Thanks,
Raghu
If this reply answered your question, Please Accept As Solution and hit Kudos.
0 Kudos
Copyright © 2024 Khoros, LLC