Forum Discussion
how to automatically disable user on aad when users not signed in 30 days on hybrid azure ad joined
Hi,
Anyone who knows how to automatically disable user on aad when users not signed in specific days from aad?
It is easy to make and handle on on-premise active directory using powershell with scheduler, but I don't know in aad environment.
We made up a hybrid azure ad join environment , there are two kinds of users.
All users are syncing from on-prem server using aad connect.
One is hybrid azure ad joined users who joined on-prem at first.
Another is azure ad joined users.
Hybrid azure ad joined users , we can easily manage their accounts even if they cannot sign in specific days using some script with scheduler checking using lastlogontimestamp.
But Azure ad joined users are not like this, someone suggest using azure automation account with microsofth graph api, is that right?
- you can Review and remove AAD inactive users in identity governance. check below blog to see how
https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/review-and-remove-aad-inactive-users-in-public-preview/ba-p/3290632
- you can Review and remove AAD inactive users in identity governance. check below blog to see how
https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/review-and-remove-aad-inactive-users-in-public-preview/ba-p/3290632 - hongwoo_jin appreciate if you could mark my response as correct answer/best response if it did provide the information to your query, that will help us better understand what kind of information actually helps.
