Reporting for LCS when manually set to a given Lifecycle state

In doing some testing, we set some accounts to an active lifecycle state manually. When I do a search on these accounts later in search, the lifecycle state shows as active without the (manual) status next to it. When I go to identity and search for those users, it does show it as a active (manual).

How do you make sure that you can do reporting for any that are set manually? I would also want to be able to know who set the LCS manually. I don’t find anything unique with the event to see anything that would indicate it was a manual process.

Risk is that someone could be set active manually by an administrator and that LCS could be stuck there with the potential to have an active account that shouldn’t be there. This could cause a back door approach for a disgruntled employee.

1 Like

Hey Fred,

What I do is use the below search query:

@accountRequests(op:modify AND attributeRequests.name:“cloudLifecycleState”) AND NOT requester.name:“System”

Hope this provides you with the necessary details.

Thanks,
Aman

This looks to work great, thank you!

1 Like

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.