locked
STSADM PeoplePicker Disabled Accounts and Profile Database Catalog RRS feed

  • Question

  • I understand the nuissance that disabled accounts will still show up in people picker after you filter STSADM Peoplefilter to exclude disabled accounts since the profile is still contained in the user catalog.

    http://URSITENAME/_catalogs/users/simple.aspx

    I already set peoplepicker to exclude disabled accounts.

    stsadm -o setproperty -pn peoplepicker-searchadcustomfilter -pv "(&(objectCategory=person)(objectClass=user)(!userAccountControl:1.2.840.113556.1.4.803:=2))" -url http://ServerName

    I'm doing an AD migration, once the user is joined to the new trusted forest, we disable the source account. I don't want the source account to show in people picker. But since it has logged into Sharepoint before it will still show up unless I delete the profile in the link referenced above.

    I'm looking for some best practices or ideas on moving forward with this scenario. Also what about users who are long gone from the company and been disabled, anyway to query that in SharePoint to delete their profiles? Thanks.


    James Chong MCITP | EA | EMA; MCSE | M+, S+ Security+, Project+, ITIL msexchangetips.blogspot.com
    Monday, February 14, 2011 9:01 PM

Answers