In order to comply with German (European?) data privacy laws, users that got removed from active directory (or another LDAP auth source) have to also be removed from Foreman's database.

We should provide a rake task to achieve this. Users can then set a cron job periodically do the housekeeping.