Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

how to deal with AD user account disable / deleted with associated archive

Created: 15 Aug 2007 • Updated: 06 Jul 2013 | 6 comments
Ash's picture
This issue has been solved. See solution.
Hi,
 
I am having EV 6.0 SP4. We are having issue when AD user account is disabled or deleted, archiving task will generate error event in event log for those archive mailbox. As we have different team for AD and EV manually disabling archive for those account which are either disabled or deleted from AD is difficult. Is there any way to synchronize EV with AD and look those accounts which are either disabled or deleted from AD and show as report so EV administrator can then disable or delete respective archives?
 
If EV 6.0 SP4 is not supported then is it supported on newer version of EV?
 
Regards,
 
Discussion Filed Under:

Comments 6 CommentsJump to latest comment

TonySterling's picture
Ash,
When users are disabled are the put in a specific AD Group?  If so you might be able to set up an EVPM to do an LDAP look up of that group and disable archiving for anyone it finds....
 
 
[Directory]
DirectoryComputerName = Vaultserverthathostsdirectoryservice
Sitename = sitenamefromadminconsole
 
[Mailbox]

LDAPquery = (&(department= kvs*)(!name= *spin*))

[Folder]
Name = MailboxRoot
Enabled = False
Suspended = False

Ash's picture
Hi Tony,
 
Thanks for your reply. I will try this out. But i am not sure all disabled account is kept under any specific OU. anyways if not then i will suggestto do that. What about on deleted accounts?
 
Regards,
 
Brian Day's picture



Ash wrote:
Hi Tony,
 
What about on deleted accounts?
 
Regards,
 





I'm curious how people handle this one as well. For us today when an account is deleted Exchange hangs onto it for 30 days before purging it from the database. Is there any way to tie in automtic deletion of their archives as well? We're not using EV for compliance, just storage extension, so deleting archives will be a regular thing for us.

TonySterling's picture
At this time it is not possible to automate the deletion of archive for an account that has been deleted.
 
My suggestion is to add a step to your procedure for disabling/deleting accounts to include submitting the archive deletion request. 



Message Edited by Tony Sterling on 09-07-2007 10:16 AM

SOLUTION
Brian Day's picture



Tony Sterling wrote:
At this time it is not possible to automate the deletion of archive for an account that has been deleted.
 




Feature request! :) It would be sweet if it could mimmic Exchange and purge their vaults after XXX days of being deleted from active directory.



Tony Sterling wrote:
My suggestion is to add a step to your procedure for disabling/deleting accounts to include submitting the archive deletion request. 



Message Edited by Tony Sterling on 09-07-2007 10:16 AM




Certainly can be done, but I'll be more overhead for my group with 90 something sets of administrators now sending us delete requests we didn't have before, doh! :)