Click HERE to see how Saviynt Intelligence is transforming the industry. |
09/12/2022 06:31 AM
Hi Team,
We have a requirement where there are few privilege users which should not be moved to Alumni OU after the user is disabled. It should be kept in the same OU where it belongs.
Now we are using the logic as
{
"userAccountControl": "514",
"deleteAllGroups": "No",
"adminDescription": "",
"streetAddress": "",
"l": "",
"postalCode": "",
"co": "",
"c": "",
"company": "",
"st": "",
"moveUsertoOU": "${null != user?.customer && user?.customer?.id==4?'OU=!NonEmployees,': ''}OU=Alumni,OU=Global,DC=BAIN,DC=com"
}
This logic works correctly for the normal users. We need to put some exception to get the result for the privilege users.
There is only 1 difference between the accounts and that is their account name.
For example a normal user AD account name is 58699 and the privilege account name is ADM58699.
Both the accounts are mapped under 1 user profile.
Kindly suggest the condition we can use here.
Regards,
Ekata
09/21/2022 02:59 AM
Hi @Ekata
Could you please share with us a example DN for both a normal account and a privilege account?
09/21/2022 07:14 AM
You can try and write your moveUsertoOU logic based on your account name, for e.g. (task?.accountName.toString().startsWith('ADM'))
09/21/2022 07:18 AM
Hi Avinash,
Thanks for the response. The issue is resolved now.
09/21/2022 07:19 AM
Appreciate if you could provide your solution here so that the users of the community can benefit in the future.