This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Info on REUSEACCOUNTJSON in AD

Srikanth
New Contributor
New Contributor

‎09/06/2022 05:47 AM

Team,

I am looking for more information on REUSEACCOUNTJSON in AD. Following are some of my questions. Appreciate if someone can look into them and provide answers.

  1. How can REUSEACCOUNTJSON be triggered ?
  2. Is there a specific action in user update to trigger this ?
  3. Just like after enable actions / after move actions which are supported in enable/disable act json, do we have any support for after move actions here ?
  4. Does saviynt automatically enable the account once it detects an inactive account ?
  5. Can there be more information provided on this statement - "Specify attributes to be checked in the specific organization unit (OU) for moving the account for reuse. "

 

Srikanth_0-1662468362600.png

 

Labels:
0 Kudos
3 REPLIES 3

rushikeshvartak
All-Star
All-Star

‎09/06/2022 07:00 AM

  1. How can REUSEACCOUNTJSON be triggered ? This is used to use same accountname in AD
  2. Is there a specific action in user update to trigger this ? No. if existing account with suspended status & not exist in AD then account name can be reused. New Account Request from user update will use this json internally
  3. Just like after enable actions / after move actions which are supported in enable/disable act json, do we have any support for after move actions here ? No. what are trying to achieve  updating some property in AD ?
  4. Does saviynt automatically enable the account once it detects an inactive account ? No
  5. Can there be more information provided on this statement - "Specify attributes to be checked in the specific organization unit (OU) for moving the account for reuse. " This is used to check if account already exist or not in above freshdesk example its checking account is disable & cn & sn is not used.

Regards,
Rushikesh Vartak
0 Kudos

Srikanth
New Contributor
New Contributor

‎09/06/2022 07:10 AM

Thanks for your response.

1 - can you give steps or more clarity on how the reuseaccountjson is triggred ? its unclear from your response on how its invoked. Its also not mentioned in FD, what will be the account status after its moved to a OU when this json is triggered ?

2 - you mentioned "not exist in AD", does reuseaccountjson come into picture for deleted accounts too ? Also, if I submit a access request for the user, how is the existing account (disabled state) will be picked up instead of saviynt triggering new account name for same user ?

3 - for example, to change some AD attribute, reset password flag, set password etc ?

 

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to Srikanth

‎09/06/2022 09:26 AM

1. This will be used whenever before it will try to create /update account 

2. yes suspended from import service status accounts name will be considered for reuse.

3. No


Regards,
Rushikesh Vartak
0 Kudos
Copyright © 2023 Khoros, LLC