Help

What will happen if I delete a user on AD?

Go to solution
Krbonus
Contributor

Posted on ‎07-23-2019 08:13 AM

Noob question

Hello, we have LDAP integration in our Jamf instance. If I delete a user in AD assuming that there's paid apps/configurations scoped out to this user. Will this un-scope everything assigned to the said user?

Thanks

0 Kudos
Reply
1 ACCEPTED SOLUTION

Go to solution
diradmin
Contributor II

Posted on ‎07-24-2019 07:46 AM

@Krbonus When assets in Jamf Pro are assigned to LDAP users, a corresponding user_object is created in the database. This object is completely separate and independent of the originating LDAP object. If you delete the user in LDAP, Jamf Pro does nothing to sync these objects. Therefore, the user_object must be deleted from Jamf Pro as well (after un-assigning assets).

View solution in original post

Reply
5 REPLIES 5

Go to solution
awginger
Contributor

Posted on ‎07-24-2019 03:27 AM

It should unstop it yes, as Jamf will no longer know of that user so it would therefore not be able to consider it within scope.

0 Kudos
Reply

Go to solution
diradmin
Contributor II

Posted on ‎07-24-2019 06:07 AM

@Krbonus Deleting the user in AD directly will not remove the user_object in Jamf Pro.

Reply

Go to solution
Krbonus
Contributor

Posted on ‎07-24-2019 07:42 AM

@awginger @diradmin I'm confused. Both of you made sense. honestly..

0 Kudos
Reply

Go to solution
diradmin
Contributor II

Posted on ‎07-24-2019 07:46 AM

@Krbonus When assets in Jamf Pro are assigned to LDAP users, a corresponding user_object is created in the database. This object is completely separate and independent of the originating LDAP object. If you delete the user in LDAP, Jamf Pro does nothing to sync these objects. Therefore, the user_object must be deleted from Jamf Pro as well (after un-assigning assets).

Reply

Go to solution
Krbonus
Contributor

Posted on ‎07-24-2019 07:52 AM

Thank you kind sir! @diradmin

0 Kudos
Reply