I need help deleting AD accounts at source directly from SailPoint IDN.
According to the documentation, only accounts from delimited file sources can be deleted. I’ve read about using a before provision rule to accomplish this, but I’m unsure about the approach.
Could you please suggest a quicker solution?
To use the second approach from @Abhinov7 response, you could create a new LCS that the Identities will enter after some time and configure the IdentityProfile to Enabled the AD account, but using the BeforeProvisioning you will change the operation to Delete and the account will be deleted.
Just keep in mind that maybe if the Identity it’s left with some Role that gives AD access IDN could create a new account once a refresh identity runs.