Our security team would like to remove access to things that are not being regularly used.
literally, if you don’t use it, you lose it 
For example, a guest account has not logged into Entra in 120 days, so let’s disable their account due to inactivity.
Entra ID does show last login date on the portal page, but I don’t see it in Graph Explorer.
Is anyone pulling last login Date into IDN? How?
Is anyone using activity dates generally as part of Role Criteria?