SharePoint People Picker: Values
are pulled from Active Directory each and every time the control is loaded
ALSO shows accounts that are on the site collection, no matter their status,
enabled, disabled, or deleted.
For the accounts loaded from AD,
by default only shows enabled accounts. If you want it to show both enabled and
disabled accounts, we have to set an AD custom filter on each site collection
where you want to show disabled users. The filter string will be similar to:
(&(objectCategory=person)(objectClass=user)(|(userAccountControl:1.2.840.113556.1.4.803:=2)(!userAccountControl:1.2.840.113556.1.4.803:=2)))
or this might also work:
(&(objectCategory=person)(objectClass=user)
It can be set with:
stsadm -o setproperty
-url http://url -pn peoplepicker-searchadcustomfilter -pv
There
is no way to show accounts that are no longer in
AD.
SharePoint
User Profiles: Values are synchronized each evening from Active
Directory
No
filters currently on this, will import both enabled and disabled, but we can set
a filter.
Deleted
users and sites are cleaned up periodically
See
this article for more details:
No comments:
Post a Comment