Automatically Set Account Expiration Date for New Users
You can configure Adaxes to automatically pre-populate the account expiration date when creating new users. If a new user is created using the User Creation wizard, the predefined date will be automatically filled in to the Account Expires field, sparing you from doing it manually. If a user is created using a PowerShell/ADSI script or during data import, and the Account Expires (accountExpires) property is not defined, the predefined expiration date will be set.
To specify the default account expiration date for new AD users, you need to create a Property Pattern for the User object type and specify the default value for the Account Expires property.
Launch Adaxes Administration Console, right-click your Adaxes service, point to New and click Property Pattern. The Create Property Pattern wizard will open.
Enter the name for the new Property Pattern and click Next.
Here you need to select the AD object type, properties of which the new Property Pattern will affect. As we want to specify the default value for the Account Expires property of user objects, select User in the Object Type list and click Next.
At the Configure Property Pattern page, you can specify default values and formatting constraints for the object properties you need. Click Add and select the Account Expires property in the drop-down list.
In the Add Property Pattern Item dialog, click the Edit button embedded in the Generate default value field. To set user accounts to expire 30 days after creation, do the following:
- Select Current Date/Time in the Set the date to field.
- Select the check box for the days field and type 30 in the edit box.
- Click OK.
When finished, click OK and then click Next.
Here, at the Activity Scope page, you need to specify where in Active directory a user must be created to be affected by the Property Pattern. Click Add.
In the Property Pattern Activity Scope dialog, select one of the following items:
All Objects - select if you want this Property Pattern to be effective when
creating a user in any AD domain managed by the Adaxes service.
Specific Domain - select if you want this Property Pattern to be effective
when creating a user in the AD domain you specify.
OU or Container - select if you want this Property Pattern to be effective
when creating a user under the selected OU or container.
Select the item you need and click Add. When finished, click OK.
The specified activity scope items will be displayed in the Assignments list. Click Finish.