5.5 Using a Policy to Manage Inactive Users

When a user leaves an organization, many organizations choose to make the User object inactive, rather than immediately delete the User object. This provides the organization an indefinite amount of time to review and determine what to do with the contents of the user’s home folder before finally deleting the User object.

In Storage Manager for eDirectory, you can easily create an Inactive Users policy that has all home folder property rights removed and apply it to an organizational unit set up specifically for inactive users. When the User object is moved to the organizational unit, the access rights for that user are immediately removed.

5.5.1 Creating an Inactive Users Organizational Unit

  1. In the Admin Client, click the Main tab.

  2. Click Identity Objects.

  3. In the left pane, browse to where you want to create an inactive users organizational unit.

  4. Right-click and select Create OU.

  5. Give the object a descriptive name, such as “Inactive Users” and click OK.

  6. Click Refresh to view the new organizational unit.

5.5.2 Creating an Inactive Users Folder

  1. On a network volume, create a folder to store inactive user home folders.

  2. Give the folder a descriptive name, such as “Inactive Users.”

5.5.3 Creating an Inactive Users Policy

  1. In the Admin Client, click Policy Management.

  2. From the Manage drop-down menu, select Create Policy > Create User Home Folder Policy.

  3. Specify a descriptive name in the Name field and click OK.

    The Policy Options page appears.

  4. Continue with Section 5.5.4, Setting an Inactive Users Policy Associations.

5.5.4 Setting an Inactive Users Policy Associations

  1. In the left pane, click Associations.

  2. Click Add, then browse to and select the inactive users organizational unit you created in Step 5.

  3. Click Add to add the inactive users organizational unit to the Selected Items panel.

  4. Click OK to save the setting.

  5. Proceed with Section 5.5.5, Setting Inactive Users Policy Provisioning Options.

5.5.5 Setting Inactive Users Policy Provisioning Options

  1. In the left pane, click Provisioning Options.

  2. In the Folder Properties region of the page, deselect each of the rights check boxes.

    This assures that User objects placed in the inactive users organizational unit do not have access rights to home folders.

  3. Click OK to save the setting.

  4. Proceed with Section 5.5.6, Setting Inactive Users Policy Target Paths.

5.5.6 Setting Inactive Users Policy Target Paths

  1. In the left pane, click Target Paths.

  2. Click Add, then browse to and select the inactive users folder that your created in Section 5.5.2, Creating an Inactive Users Folder.

  3. Click Add to add the inactive users folder to the Selected Items panel.

  4. Click OK to save the setting.

  5. Proceed with Section 5.5.7, Setting Inactive Users Policy Cleanup Options.

5.5.7 Setting Inactive Users Policy Cleanup Options

  1. In the left pane, click Cleanup Options.

  2. In the Storage Cleanup region, select the Enable check box.

  3. In the Cleanup storage field, specify the number of days you want an inactive user’s home folder to remain before it is removed from the target path for this policy.

  4. Click Apply to save the settings.