LDAP Users integration Filtering

sLuintel
Giga Expert

‎01-26-2016 03:28 AM

We have a LDAP integration set up and it works fine. However, there are a lot of generic accounts set in AD and these are being pulled into service now as well. What is the best way to filter this from coming in?

Labels:
0 Helpfuls
  • 1,517 Views
5 REPLIES 5

JBark
Tera Expert

‎01-26-2016 05:26 AM

Marche has some very good solutions, please be sure mark them as correct. My suggestion is down a different path, we have a very high volume of generic accounts and they are in two separate OUs, one for zero clients and one for standard systems. We have a need for each group to get a particular set of GPOs and that is what works for us.



Note: multiple RDNs can be added to the same LDAP servers pointing to several different OUs. SNow does not have root access to our AD, nor does it pull all object attributes. This is for best practices in Security and Performance.


0 Helpfuls