> On May 10, 2020, at 8:45 AM, Rui DeSousa <rui@xxxxxxxxxxxxx> wrote: > > I would agree if talking about a targeted specific system temporarily. Even then, of course you manage it with LDAP. By removing the user from the group that grants access to the db rather than deactivating the user. Really, it's the whole point of LDAP...