Get list of inactive users with licenses assigned in Microsoft 365

Dileepa S.Rajapaksa · ‎Oct 04 2021

I have a Microsoft 365 tenant with more than 1000 users in it. I need to get a list of users who have not been active for the last 180 days but are assigned with licenses. The goal is to check if users left the company but never removed their licenses although inactive, which is a waste of money. Please advice.

thijoubertold · ‎Oct 04 2021

@Dileepa S.Rajapaksa

The link below should be the perfect answer:

https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/howto-manage-inactive-use...

Dileepa S.Rajapaksa · ‎Oct 04 2021

Thanks, but this does not have a way to get users with licenses assigned

Dileepa S.Rajapaksa · ‎Oct 04 2021

To be more precise you could:

1/ Get all the users with licenses assigned
The most simple solution is: Get-MsolUser -All | where {$_.isLicensed -eq $true}

To go further, I use several custom scripts :
- To get a list of the licenses assigned to a user (ex : Office 365 E3) : https://github.com/thijoubert/Sharing/blob/main/PowerShell/AAD_Licenses_Users.ps1
- To get a full list of the SKU assigned to a user (ex : SharePoint Online P2) : https://github.com/thijoubert/Sharing/blob/main/PowerShell/AAD_Licenses_Users_Details.ps1

2/ Get the last sign-in date for you users:
The most simple solution : https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/howto-manage-inactive-use...
You could use Graph explorer with an admin account

3/ Cross-reference the two lists to get your answer

Dileepa S.Rajapaksa · ‎Oct 04 2021

@thijoubertold i'm getting the following error in Graph API when try this.

thijoubertold · ‎Oct 05 2021

Did you grant the relevant permissions?
- User.Read.All
- Directory.Read.All
- Auditlogs.Read.All

Dileepa S.Rajapaksa · ‎Oct 05 2021

In the modify permission tab I cannot see the Auditlogs.Read.All... Where can I locate them?

thijoubertold · ‎Oct 05 2021

@Dileepa S.Rajapaksa

You can find it here:

Hope this helps

Dileepa S.Rajapaksa · ‎Oct 05 2021

Thank you so much this saved my life...

ronalddolfsma · ‎Sep 02 2022

@Dileepa S.RajapaksaAzure AD is an enterprise product. How can it be that a page/list of inactive users is not available in the interface, by default? It's actually mindblowing....

JJKW1984 · ‎Sep 14 2022

As you said it is an Enterprise Product so they provide the infrastructure with an API.
Pretty user interface and prebuilt reports are second class user cases.

rayk_sland · ‎Mar 17 2023

pretty snooty reply. but it's nonsense. As a charity user I get hounded to make sure my users are all active, that I must de-license the inactive ones, but microsoft provides no easy report to tell me which those are. non-usability is not an 'enterprise' feature. It's a stupid feature.

Get list of inactive users with licenses assigned in Microsoft 365

Get list of inactive users with licenses assigned in Microsoft 365

Re: Get list of inactive users with licenses assigned in Microsoft 365

Re: Get list of inactive users with licenses assigned in Microsoft 365

Re: Get list of inactive users with licenses assigned in Microsoft 365

Re: Get list of inactive users with licenses assigned in Microsoft 365

Re: Get list of inactive users with licenses assigned in Microsoft 365

Re: Get list of inactive users with licenses assigned in Microsoft 365

Re: Get list of inactive users with licenses assigned in Microsoft 365

Re: Get list of inactive users with licenses assigned in Microsoft 365

Re: Get list of inactive users with licenses assigned in Microsoft 365

Re: Get list of inactive users with licenses assigned in Microsoft 365

Re: Get list of inactive users with licenses assigned in Microsoft 365

Products (65)

Special Topics (44)

Video Hub (978)

Most Active Hubs

Most Active Hubs

Video Hub

Get list of inactive users with licenses assigned in Microsoft 365