Users blocked when changing DN/UID
ZD: https://gitlab.zendesk.com/agent/tickets/29154
Overview
Users are blocked when DN changes. LDAP integration should fallback to email address, this doesn't happen and the user is blocked.
Customer notes
When looking through these users, it appears their LDAP UID has changed, which can happened quite often for us as users move offices, or get put in an OU for desktop users, or laptop users.
This change has then locked their account, and we are unable to manually unblock it.
When the user signs back in after being marked as “Blocked” they are made Active again and I can see that their LDAP uid is updated to the new value.
The issue for us is that it even blocks them in the first place. When a user is blocked, they cannot access their repositories and this leads to helpdesk tickets being created for us.
Can we remove this functionality of blocking users if their DN changes in AD? What is its intended purpose?
//cc @dblessing