on Oct 5, 2016Hi,
We are provisioning accounts in AD using the AFX native connector. We are able to create the accounts with no issues, but the customer wants to set the "User cannot change password" option on these accounts. We tried the solution mentioned in this post 000032426 - How to update the LDAP Active Directory Connector UserAccountConrol attribute for use with RSA Via Lifecycle and Governance (L&G) 6.9.1 P08 , which mentions that userAccountControl must have the value "64", but this approach is not working for these accounts.
Can someone have tried a different approach for this?
Thanks,
Ricardo Pérez
Hi Ricardo,
When you set the value for "userAccountControl" in your provisioning node you need to use the Property Flag value and not the Value in Decimal. So in your case you need to put the value as "PASSWD_CANT_CHANGE" instead of "64" as you are currently doing.