we have alfresco 5.2 in our environment. we have a couple of active directory domain and which is mapped in alfresco. previously we have all the users (including disabled and active users) in the alfresco.
we have modified the person query and enabled "synchronization.allowDeletions" in ldap-ad-authentication.properties to perform a full sync with the AD.
After we restarted the service with the above configuration, we still can see the users in alfresco which are already got deleted in AD.
we also configured the user status to be reflected in the alfresco, hence we modified the alfresco-global.properties with the below parameters.
### user account status syncronization ###
after we restarted the alfresco service, we still see that user status (enabled/disabled) is not reflected in alfresco. users which are disabled in AD is still active in alfresco.
let me know what could be the issue here. our final goal is to do a full sync with active users in alfresco. if the user is disabled, the same should be reflected in alfresco as well.
Appreciate your help!