Prevent ARS from Reusing Usernames

We have several 3rd party systems that do not allow for usernames to be reused. However, our current setup with usernames in ARS allow for the usernames to be reused once the account is deleted from AD. Does anyone have any suggestions on how we can prevent usernames from being reused in ARS?

Parents

0 JohnnyQuest over 3 years ago

Remember that for ActiveRoles, the "anchor" object for an identity is an AD user. It's also the way the product is licensed.

I would propose two options (there are likely others):

1) Store these names in a readily accessible database that an Active Roles workflow-driven script could reach out to to perform its checks OR

2) Store the user names in Contact objects in AD that are made invisible in Exchange but could be queried by Active Roles.

Both approaches will require some customization efforts.
Cancel
Up 0 Down

Reply

Verify Answer

Cancel
0 JohnnyQuest over 3 years ago in reply to JohnnyQuest

For 1) above, AD LDS might be a good choice because it's free and Active Roles "natively" supports it so you could easily query it.
Cancel
Up 0 Down

Reply

Verify Answer

Cancel

Reply

0 JohnnyQuest over 3 years ago in reply to JohnnyQuest

For 1) above, AD LDS might be a good choice because it's free and Active Roles "natively" supports it so you could easily query it.
Cancel
Up 0 Down

Reply

Verify Answer

Cancel

Children

No Data

Endpoint Privilege Management

Prevent ARS from Reusing Usernames