Hi Guys,
Is it possible to get the date when a AD account is disabled and to compare it with the date when lifecycle is changed?
Yes, it’s possible if the AD source is configured to bring in the whenChanged or similar timestamp attribute tied to the account being disabled. You can map this attribute in the account schema and pull it during aggregation. Then, store it as an account attribute or use it in a transform to expose it to the identity. You can compare this timestamp with the lifecycle state change date (if tracked via identity attribute or identity history). A rule or report can help automate this comparison for auditing or workflow triggers.
Is it not possible to get it from the disabled event that isc logs? What i thought was to get the date of the disable event of the AD account and compare it with the lifecycledate. But i dont know how to get the disable event and the date of it.
Once account will get Disable your AD account attribute “Enabled” value will get change from true to false, now you can enable native change to detect for this attribute and then build workflow in that user Trigger Update Native change detect then you can build next process in workflow according to your requirement.
I want to minimize te complexity of the workflow etc. Native change detection is also disabled on our tenant and for now we dont want to use it. Is there any other possibility with the events log?
You can try Source Update Trigger
I am using already another trigger in my workflow. It strange that there is no simple solution to get the event filtered out with the event date
Let me check and will update you if it is possible
Ok i will wait for your update
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.