I'm not an AD/LDAP expert by a long shot, but here goes. We're using AD/LDAP for our Confluence authentication and apparently when someone logs in, we're searching disabled LDAP users (those who've left the company). The problem is when a current employee has the same login ID as someone whose left the company. In our User Schema Settings we are using the following in our User Object Filter: (&(objectCategory=Person)(sAMAccountName=*)). I'm looking to find the parameter that will skip over any LDAP user that is no longer with the company. Thank you.
I've edit your LDAP search above to leave out disabled accounts. I know it looks weird, but that is how you do it.
(&(objectCategory=Person)(!(userAccountControl:1.2.840.113556.1.4.803:=2))(sAMAccountName=*))
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.