Doing a PoC and one of the test cases is to do a certification on
accounts that have not logged in for > 180 days.

What I did was define a new application called (Last Log on > 180 days)
and in the LDAP filter I just put in the filter:
> (loginTime<=20140105135114Z)

I collected and published.

I then created a review for users belonging to this application that I
defined. This works... But is not exactly what the client wants in my

Is there another way I can achieve this? I guess one of the issues I am
having is the way the data is being presented to the reviewer:

Can I add some more fields to the review screen to show the login time?

Is there another way I can do this? Say, instead of creating a new
application, just use the attributes present in the IDV?

ccikara's Profile:
View this thread: