Please be sure you’ve read the docs and API specs before asking for help. Also, please be sure you’ve searched the forum for your answer before you create a new topic.
Please consider addressing the following when creating your topic:
What have you tried?
What errors did you face (share screenshots)?
Share the details of your efforts (code / search query, workflow json etc.)?
What is the result you are getting and what were you expecting?
I am trying to get Active Directory to respect the lifecycle state of the account in SailPoint.
Example: Service Desk goes into Active Directory and Disables the account, but the life cycle state in SailPoint is Active. We want that Active Directory account to get re-enabled.
Enable / Disable actions take place only when the LCS changes. ISC will not enable any account even if it is included under “Enable” list just because of the LCS.
What I can think of is to have a workflow that triggers on Account Updated with a filter for AD source and check if the account is disabled. If it is, check the LCS of the identity and based on the LCS enable the account if needed.
I would suggest utilizing Native Change Detection as a workflow trigger to perform a check to see if the identity is in an active LCS and if it is, re-enable the account via workflow action
Please be sure you’ve read the docs and API specs before asking for help. Also, please be sure you’ve searched the forum for your answer before you create a new topic.