Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-36298

Disabling user in delegated Active Directory doesn't disable them in Confluence until they log in

    XMLWordPrintable

Details

    Description

      Steps to Reproduce

      1. Create a delegated directory, hooked to Active Directory
      2. Login with an AD user, with the "Remember Me" option checked
      3. Close the browser completely
      4. Disable the user in AD (by checking the "Account is disabled" option in User Properties >> Account >> Account Options )
      5. Launch the browser again, and navigate to Confluence. Notice that you are still logged in as the disabled user.
      6. The SUCCESSDATE in the logininfo table for this user is updated to the time when step #5 is executed

      In a delegated directory, the user will only be locked out from Confluence once the user logs out, and log back in

      In a connector directory, a directory sync will automatically lock the user out from Confluence

      Attachments

        Issue Links

          Discovered while testing

          CSP-139150 Loading...

          Activity

            People

              matt@atlassian.com Matt Ryall
              fsim Foo Sim (Inactive)
              Votes:
              1 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: