Sophos AD Sync Filters

Hi,

I've inherited the system and noticed that we have 1000s of users in Sophos Central even though we should probably have around 1000-1500.

A little OU structure overview:

Admins top level OU (no users in root)

-Sub OU 1 (users)

-Sub OU 2 (users)

-Sub OU 3 (users)

Users top level OU (contains users in root)

-Sub OU 1 (users)

-Sub OU 2 (users) - This OU has 1000s of users and only a handful of them ever logged in.

-Sub OU 3 (users)

-Sub OU 4 (users)

Is there a way to create an LDAP filter for all users and admins that would only sync users who logged on in XX days? Say 30 days?

Alternatively if the above is not possible I am thinking to have have a filter based on group memberships.

Anyone has a suggestion about an LDAP filter that could work for the above scenario?

Granted, the OUs could do with a little restructuring but I think of that as last resort for now.

Regards,

LP

Parents Reply Children
No Data