Finding LDAP users in AEM that haven't logged in for a long time

We use LDAP integration with AEM. How do we query to get all users who haven't logged in for a long time?

Steps

You can rely on the rep:lastSynced property stored when a user has it's properties synchronized from the LDAP server.

  1. Go to http://host:port/crx/de/index.jsp and log in as admin.

  2. Go to Tools => Query

  3. In the bottom Query field, enter this query (modify the date as needed): /jcr:root/home/users//element(*, rep:User)[@rep:lastSynced < xs:dateTime('2017-08-20T23:34:15.223-06:00')

  4. The results would show the users who haven't logged in since the date you entered.

Note:

rep:lastSynced is updated by the DefaultSyncHandler in Oak so this only applies to authentication handlers that utilize it to synchronize the users.

For example, AEM's SAML and LDAP integrations use the DefaultSyncHandler.

 Adobe

Get help faster and easier

New user?