We have had Rocket.Chat configured with LDAP authentication back to our AD domain without issue for some time. I just recently came to notice when users are disabled in Active Directory, they are still able to login to Rocket.Chat. Is this expected or am I doing something wrong? I’ve poured over the settings in the admin area but can find any pertaining to this.
Other applications that we have LDAP auth with like NextCloud or Zabbix prevent users from signing in when their AD accounts are disabled, as I would expect.
EDIT: Also, I’ve noticed if you LDAP sync a user that has been disabled, it will not let you login until you enable in AD Users and Computers and re-sync LDAP. However, for existing users, it doesn’t sync or pick up that the user is disabled.