Hi Team,
We are integrating Web Service Connector and currently we want to aggregate only the Enabled accounts and we do not want to aggregate Disabled accounts. As we are using API’s here is there any filter for API URL through which I can achieve this?
Can you please help me with this information
Take a look at this Compass page.
Using the documentation Carl provided, you would probably want to construct a filter on your AD source using either userAccountControl or ms-DS-User-Account-Disabled. userAccountControl is a bit tricky to build an LDAP filter for, here is a site that explains it a bit more: LDAP Filtering
That site includes an example of an LDAP filter that might fit your usecase.
(!(userAccountControl:1.2.840.113556.1.4.803:=2))
This will exclude all accounts that have the disabled flag set on their userAccountControl value.
We have followed the above documentation and tried the below JSON expressions.
[
{
"op": "replace",
"path": "/connectorAttributes/filterString",
"value": "(status == \"A\")"
}
]
Can you please help me here as I am not able to aggregate only the enabled accounts.
Hi There,
If I understand correctly, the value that matches the filterString is not aggregated and the property must be part of the account schema.
Perhaps the below JSON or similar could work: -
[
{
"op": "add",
"path": "/connectorAttributes/filterString",
"value": "(Inactive != false)"
}
]
OR
[
{
"op": "add",
"path": "/connectorAttributes/filterString",
"value": "(status.containsIgnoreCase(\"disabled"))"
}
]
Hope that helps 
hi @The_IAMSheriff,
Please find the snippets, as the I am able to see 62 account in the Account aggregation tab.
But in the accounts tab I can see overall accounts.
PFA,
Let me know if there is anything to change in the configuration.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.
