Active Directory Sync disabled Computer Object
Dear Devolutions Team,
we have a configured a sync between the RDP Manager app and our AD. Runs perfectly. Thank you for that!
Now our question would be, we didn't find a possibility to auto delete disabled Computer Accounts in RDP Manager App.
We would like to have the App cleaned up from disabled RDP Objects. We have in total round about 6000 Computer Objects, so its nice to have them sorted out from disabled ones.
we already applied this option in the Filter Settings for not syncing disabled accounts:
-> (&(objectCategory=computer)(!(userAccountControl:1.2.840.113556.1.4.803:=2)))
Can you help us out, maybe :-)
Greetings
Conti (Not the Hacker Group) :D
All Comments (1)
Hello,
We have the option "Action on entry mismatch" in the "Advanced" tab of your synchronizer's properties. If you select the "Delete" option in the combobox our synchronizer will delete any entry that isn't found in your current sync.
If your filter removes computers from the sync action then those computers will be deleted. On the same note, If your computer is deleted from the Active Directory it will also be deleted in RDM.
Please do let me know on this thread if you encounter any issues.
PS: If you have the option "Import Description" activated in your "Settings" tab of the synchronizer's properties, I would recommend activating the option "Update non-critical fields on mismatch". If you do not check this option, the computers will be deleted and recreated every time the description of the computer is changed in your Active Directory. With this option the entry will simply be updated (this lets you keep your logs in RDM since the logs will be gone on deletion).
Best Regards,
Michaël Beaudin