We would like a CA field to be associated with a Boolean LDAP field that represents the person's Active/Inactive state. Inactive meaning they are no longer associated with our company. Our Identity Management policy has our terminated identities remaining in our systems up to five years after they are terminated. We have over 400k identities with approximately 3/4 of them are Inactive. Without this field our CA application indicates that all 400k are active.