Remove the user access before disabling the user account in IdentityNow

chandramohan27 · August 28, 2024, 8:10am

Hi Experts,

There is a more generic use case where I have to remove all the access items of the user before disabling the user account across sources. I thinking to achieve this in workflow.

Step 1: Trigger when LCS changes to Inactive.
Step 2: Get All Access Items for the Identity.
Step 3: Remove all the access using Loop Operator.
Step 4: Exit Loop
Step 5: Get the user’s all Source accounts.
Step 6: Disable the user account using loop Operator.

Kindly suggest if there is any better practice to achieve this.

filip_johansson · August 28, 2024, 8:31am

I would suggest you complete Step2-Step4 using a solution like this one instead.
Then any access would be removed using a certification and thus leave a better audit trail.

Other than that, it looks solid.

system · October 27, 2024, 8:32am

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Bulk disable account for source ISC Discussion and Questions workflows , identity-security-cloud	7	56	January 8, 2025
Workflow - Remove access and disable accounts ISC Discussion and Questions workflows , identity-security-cloud	7	269	November 24, 2024
Microsoft SQL Server deprovisioning ISC Discussion and Questions aggregation , identity-security-cloud , provisioning	14	66	January 5, 2025
Move OU after few days of identity disable IdentityNow ISC Discussion and Questions identity-security-cloud	4	1297	July 19, 2023
Delete AD user at some HR event ISC Discussion and Questions identity-security-cloud , provisioning	7	531	October 24, 2023

Remove the user access before disabling the user account in IdentityNow

Related topics