Can someone please give some details on what the AD user creation through the workflow does? We're only in PROD in a highly confidential user data info. as well as SharePoint is external facing. So I cannot risk doing some testing in PROD AD and PROD SharePoint before knowing all the risks/security areas.
Does the action create the user in a disabled state or enabled account? what about the access, does it automatically grants the access to all areas or the permissions/groups would be a different thing?
I'm not super aware of how AD works general, so the more details the better..