Category:Active Directory
Last Updated:2011-08-03
By default, UnitySync will pull both Enabled and Disabled Users from your AD source directory. You may use an optional LDAP Query Filter to indicate only Disabled or Enabled should be pulled. This query is based on the value of UserAccountControl.
Enter the following filter syntax in the ’Users’ filter paramter to configure your UnitySync connection to pull based on Enabled/Disabled Users status.
Pull only disabled accounts:
(UserAccountControl:1.2.840.113556.1.4.803:=2)
Pull only enabled accounts:
(!(UserAccountControl:1.2.840.113556.1.4.803:=2))
For More Information on UserAccountControl refer to Knowledge Base article Working with UserAccountControl.