Re: disabled vs expired
- From: fireater <fireater.255047@xxxxxxxxxxxxx>
- Date: Fri, 24 Mar 2006 00:17:30 +0530
Ok, first there is a difference between disable and expire as far as AD
goes. If you look at just backups, you will see a difference. Backing
up an Exchange email account that is disabled, will fail every time,
but if you expire it you will get a good backup. Expire stops only that
user from having access. Disable will stop all users for having access.
Also, email still comes into the mailbox on an expired user account.
This my be needed also, for lots of reasons.
Why use expire? The person has left, you want them to not be able to
get into their account, but you still need the supervisor/legal to
review the email in the account. Then use expire.
You can use expire like disable, just set the date older then today if
you want to stop access by the user. Granted disable is very fast and
you get to see the little red X next to the name. I would kill to have
a symbol next to expired accounts. As a side note, when we do expire an
account, well will add "- Expired" in the user description. If it is set
to expire on a set date, the we will add in the description "- Expire on
??/??/??". This is only for easier finding and admin reasons.
We only use disable if we want a fast stop of all user access. It will
be followed by changing it to expired as time permits. Most of the time
we just use expire.
--
fireater
------------------------------------------------------------------------
fireater's Profile: http://forums.techarena.in/member.php?userid=14440
View this thread: http://forums.techarena.in/showthread.php?t=74142
Free Computer Help - http://forums.techarena.in
.
- Prev by Date: Re: Setting default location for computer creation in 2003AD
- Next by Date: how to extract names of Disabled User Accounts
- Previous by thread: Windows NT 4 domain to AD
- Next by thread: how to extract names of Disabled User Accounts
- Index(es):
Relevant Pages
|
