How to delete Deactivated AD users in Octopus?

jpajunen · 19 January 2017 23:34

Is there easy method for Octopus Deploy to delete / deactivate users based on Active Directory status?

Use case:

Preconditions: AD is used for login credentials
User is deactivated in AD

Expected behavior:

User is deactivated in Octopus Deploy.

Actual results:

AD status doesn’t reflect Octopus server user account.
User appears to stay active in Octopus Deploy

Shannon_Lewis · 20 January 2017 06:01

Hi,

Thanks for getting in touch! We do not currently delete/deactivate users based on Active Directory status.

Until the Subscriptions functionality was introduced there was little benefit to be gained by constantly polling AD to see if users had been disabled/removed. Once the user was disabled/removed in AD they could no longer log in to the network and therefore couldn’t access Octopus, so there seemed little harm in the User records remaining unused in the DB.

However, now that Subscriptions has been released, there may be a need for this functionality to stop emails going to users who are disabled/removed. We don’t currently have plans to add this functionality (it’s not trivial, to answer your question), but we’re always willing to take input from the community on prioritizing features so I’ve created an item in our UserVoice. Please vote for it if you feel it’s important.

Hope that helps!

Shannon