RM Logo
Technical Rating: 
Support Home PageSupport
Print This PagePrint This Page
Add to 'My Library' Add to 'My Library'

Unable to delete a disabled RM Unify user that was provisioned from Active Directory
Published Date : 12 Jan 2017   Last Updated : 04 Oct 2024   Content Ref: TEC5417467  


Operating System(none)
Part No(none)
SummaryExplains why a disabled RM Unify user that was provisioned from Active Directory cannot be deleted.



Symptoms

One or more user accounts provisioned from Active Directory (AD) are showing as disabled in RM Unify. You want to permanently delete the RM Unify account as they no longer require access to RM Unify or any linked apps. The user may or may not exist in AD.


Cause

RM Unify user accounts provisioned from AD, will not get deleted from RM Unify if the AD account resides in an OU location not scanned by an RM Unify AD Sync AD filter at the time of AD account deletion.



Requirements

This is applicable to RM Unify AD Sync v4.


Procedure

If the user account no longer exists in AD
  1. Run a 'resync with delete' from the RM Unify AD Sync Config Tool (for more information, refer to TEC5476566 in the Other Useful Articles section below).

    The resync will remove the users from RM Unify that were previously deleted after being disabled.

If the user account still exists in AD and is disabled

Only use the following process if you are certain the AD user will not require access to RM Unify and linked apps, such as O365 or G Suite, again. If you are unsure, do not follow this process and allow the AD and RM Unify accounts to remain disabled. 

  1. Ensure the AD account does not fully match any AD filter in the RM Unify AD Sync Config Tool but is located in an OU (or sub-OU) that is scanned by an AD filter. For example, the AD account is in an OU scanned by an AD filter but is not a member of the optional AD filter group.
  2. Run a 'resync with delete' from the RM Unify AD Sync Config Tool (for more information, refer to TEC5476566 in the Other Useful Articles section below). The resync will remove the user from RM Unify. This may also delete accounts in third party apps.
  3. Once you have confirmed the user has been deleted from RM Unify, disable the AD account.


Other Useful Articles

How to run a 'resync with deletes' from the RM Unify AD Sync Config Tool (TEC5476566)

FEEDBACK
Did the information in this article help answer your question?
 Yes
 No
Please add any comments about this article in the box below. If you answered No then it is important you tell us why so that we can change the article if required. We can only respond if you log in to the RM Support website or provide your contact details. Note: If you need help with a technical query, please log a call online or telephone our support team.
Thank you for your feedback, which is sent directly to the RM Knowledge team. We address every message received with the intention of improving our Knowledge Library articles. If you have an unresolved technical issue, please contact RM Support.


If this article has not helped provide a solution then it is also possible to log a call...



Document Keywords: ad, sync, ad, adsync, user not deleted, delete user, disable, disabled user


Please read - important disclaimer information.
http://www.rm.com/_RMVirtual/Includes/csredirect.asp?cref=&title=Standard Content Disclaimer


Top Of PageTop of page