I have a customer that has 160,000 accounts in a single Active Directory group. They only have 13,000-15,000 active users per year though, out of the 160,000. For business reasons they cannot and will not separate active users from inactive users in AD.
The customer is interested in purchasing a block of 25,000 community subscription users but does not want to actively manage accounts. They want users to log in through a portal, submit forms, and be able to have read-only access to documents. The portal authenticates through Active Directory Federation Services (ADFS).
With Laserfiche Directory Server, is it possible to grant access to the AD group, and then have community licenses allocated as the users log in? We do not want to sync the entire 160,000 users in the group.
My thought is that if we can add the large AD group, the as users log in the licenses will be allocated. At the end of the year the administrators can do a one-time de-allocation of licenses and start over again.
Is this possible with 10.2 directory server? Thanks in advance!