Hi, coming to the community for advice to ask if they've seen this before.

Issue: New Account tasks created where an Inactive Account already exists on the Endpoint

We have an 'AD' type Connection to our OpenLDAP directory. We have Disabled/made Inactive accounts for departed users in the Directory, which show as Inactive in Saviynt. However, it is generating New Account tasks for these Users. (These tasks cannot complete successfully because the account still exists, disabled in OpenLDAP).

The users do fall within the Technical/Provisioning Rule for the account, but as the account is Inactive, we don't think there should be a New Account Task generated.

Setting "Disable New Account Request If Account Already Exists" in the Endpoint, and 'Check Unique Account" Rule of All in the Endpoint Account Name Rule does not prevent creation of these New Account tasks.

This is similar to "New account created for users with inactive account" but not identical, though that issue had no resolution and can no longer be commented, so I am creating a new topic.

We're trying to understand why the New Account tasks are being generated when the Inactive Account already exists on the Endpoint and is still linked to the User. Any suggestions or advice is appreciated.

Many thanks,

Ian