Go to http://host:port/crx/de/index.jsp and log in as admin.
We use LDAP integration with AEM. How do we query to get all users who haven't logged in for a long time?
Steps
You can rely on the rep:lastSynced property stored when a user has it's properties synchronized from the LDAP server.
-
-
Go to Tools => Query
-
In the bottom Query field, enter this query (modify the date as needed): /jcr:root/home/users//element(*, rep:User)[@rep:lastSynced < xs:dateTime('2017-08-20T23:34:15.223-06:00')
-
The results would show the users who haven't logged in since the date you entered.
rep:lastSynced is updated by the DefaultSyncHandler in Oak so this only applies to authentication handlers that utilize it to synchronize the users.
For example, AEM's SAML and LDAP integrations use the DefaultSyncHandler.