As a Crowd administrator, I am not always the administrator for the LDAP environment but I need to retain user records with an LDAP connector user directory for business purposes. I would like to have an option to retain user records for auditing purposes instead of having them automatically deleted on the next LDAP sync.
Currently, a workaround is not available in the product directly for LDAP connectors but you can use a Delegated LDAP Authentication user directory to retain user records.
This may not work for all use cases, but you can also manually copy users over to the Crowd Internal Directory and deactivate them so that their records are maintained. If you don't have control or visibility on when users are added/deleted in LDAP, though, you should engage with your LDAP administration team for coordination purposes to ensure that your business processes are being respected as a Crowd administrator.