A user was extended and the expiration date extended on their Active Directory account, however they show they are still expired and deactivated with Password Secure. Is there any way to sync the Active Directory account to Password Secure so its updated?
Tried to search for the User in Password Secure and selected Change AD Sync State from Activated to Deactivated and then Activated, but User is still expired & Deactivated.
Validated the Active Directory account is active, and not disabled or locked.
Validated the Active Directory account is NOT expired.
Check box for account is deactivated is greyed out and has a CHECK mark and Expires text box is greyed out and shows the Expired Date
It appears that objects in Netwrix are occasionally not permanently deleted when the associated AD object is no longer in a permission group or is deleted.
Log in to the server with the SA account, press Ctrl+F12 in the organizational structure to switch to the view of deleted accounts, select the account, and choose “Permanently Delete” in the top-right corner.
If the user has been reactivated in AD but is still displayed in Netwrix as deactivated with an expired validity date (where both fields are grayed out and cannot be changed):
· Remove from the password group in AD.
· On the server, perform a manual synchronization (check profile and user type).
· As described above, view the deleted accounts and permanently delete the relevant user.
· Re-add the user to the password group and manually synchronize again on server (check profile and user type).
ATTENTION: The personal passwords of the user who has already been deleted/deactivated before may no longer be available!