We were thinking about this a while ago. We were not sure what the proper way would be to handle this so we postponed our decision until we face it in the wild. Well, so the day has come…
I’m not yet convinced that just ignoring the login is enough. From my point of view the LDAP is the more sophisticated user management software with the possibility to manage roles and map those into Zammad.
Therefore I’d propose that we should skip Exchange Users if there is an existing LDAP connection to this very same user. Users that are present in the Exchange but not in the LDAP will be synced as expected.
What do you think @skull77? Would this suite your use case?
@MrGeneration you are an experienced (LDAP (and Exchange?)) admin. What’s your opinion?