You can enable AirWatch to detect when a user account is disabled in your directory service and automatically set its associated AirWatch user account to inactive.

  1. Navigate to Accounts > Settings > Directory Services.
  2. Select the User tab.
  3. See advanced configuration options by selecting the Show Advanced hyperlink.
  4. Select Automatically Set Disabled Users to Inactive check box.

    • Value For Disabled Status – Enter a numeric value and select the type of Lightweight Directory Access Protocol (LDAP) attribute used to represent a user’s status. Select “Flag Bit Match” if the user status is designated by a bitwise flag (which is the default for Active Directory).
      • If any bits from the property match the value you enter, then the directory service considers the user to be disabled. But only when Flag Bit Match is selected.
    • If you select this option, then AirWatch administrators set as inactive in your directory service may not log in to the AirWatch Console. In addition, enrolled devices assigned to users who are set as inactive in your directory service are automatically unenrolled.