We're storing the AD admin account data in one of the custom table u_admin and the issue we're facing is when admin account in AD is inactive we're trying to get 'userAccountControl' values from AD and updating same account inactive in u_admin in ServiceNow.
Now I wanted to validate if admin account is active or not using Enable field in AD and if enable is false for a particular account then I wanted to make admin account active false in custom table u_admin
If you are using import sets & transform maps to load the data to custom table u_admin, check whether LDAP is sending the 'enabled' field as part of integration and mapping is enabled. Based on the method of integration, you can update the record in u_admin table to set field active=false.
For example, if you are using import set and payload is received, you can check whether field mapping is enabled for active field or you can create transform event function onBefore transform script to update the field value.
Below is out of box onBefore transform script for active field mapping for LDAP integration
If payload is not received, you can check alternate options to query the LDAP on a daily or weekly basis to check whether admin account is active and update the record in u_admin table
If this helped to answer your query, please mark it helpful & accept the solution.
Thanks,
Bhuvan
Thank you @Bhuvan for looking into this.
We're using import sets & transform maps to load the data to custom table u_admin. But I'm not exactly sure, if payload from AD is having the enable field information or not. I have checked, all the variables in import set table: 'u_ldap_import_admin' , but I can't find anything related to enable or true/false value.
How can I check and confirm if enable field information is sent in payload from AD or not?
