-
Suggestion
-
Resolution: Unresolved
-
None
-
126
-
Problem Definition
Currently, the process of finding and deactivating inactive users(haven't accessed any products for a long time) is strictly manual as admins can either use:
- The Export accounts feature inside the Managed Accounts
- The Organization get users REST endpoint
To find those users by looking at the Last active date.
So, the deactivation of the accounts still depends on manually checking how long your users have been inactive and then manually deactivating them or developing a script to use the user management REST deactivation endpoint.
Many admins are also interested in disabling the notifications that are sent to their end users upon deactivation, or improving the deactivation message to include more information about the reason for deactivation to keep users better informed.
Suggested Solution
Implement a deactivation policies feature for Atlassian Access where admins can configure default time for users to be deactivated by being inactive.
Admins would then be able to configure that users who haven't accessed any products in the last 3 months will get automatically deactivated.
Additionally, the feature could trigger an email message to the deactivated users saying why they were deactivated and who they need to contact, as well as an option to disable the notification from being sent.
Why this is important
For organizations with thousands of users, the current methods of finding and deactivating, inactive users requires a lot of work from the organization admins and as the company grows this tends to get more difficult to be done.
- duplicates
-
- Closed
- is duplicated by
-
- Closed
-
- Closed
-
- Closed
-
- Gathering Interest
- is related to
-
- Closed
-
- Closed
-
- Gathering Interest
-
- Gathering Interest
-
- Gathering Interest
-
- Gathering Interest
- relates to
-
- Closed
- was cloned as
-
- Closed
- mentioned in
-
Page Loading...
-
-
-
-
-
-
-
-
-
-
-
-
[ACCESS-720] Deactivation policies for managed accounts
Hi,
You can install this app from the marketplace:
It will deactivate all inactive users you have periodically by the time you choose.
It's totally secure, and uses Atlassian's Api's only
We have developed automation to do this in crowd (as we are using data center) for users who have not logged on within 15 days. Not having this feature in Access is a very large impediment for moving to cloud.
This will really go a long way to help we Jira admins. It might not necessarily be an automation; it could just be a feature. Probably a user management feature embedded in Jira, it could also be a setting feature which we can manually change the dates of inactivity, it is 60days for my organization. or a feature that automatically removes a user license, if they log less than twice in 30days and they can automatically be reinstated if they log in provided there is still space available.
Exactly. We don't even need this to necessary be api endpoint to automate (thought it would eb great) we just need some sort of policy enablement in place to automatically remove users after a period of inactivity
This will definitely help admin to manage users efficiently and effectively. simply introduce some policy rule feature to configure default time for users to be deactivated by being inactive.
This would be extremely helpful to have – but also for user accounts which do not belong to Managed Accounts.
Has there been any further updates with this? I've recently got Atlassian Access and only just discovered the manual process to deactivate users. Quite disappointing considering how much we pay for it. 
This should definitely be an inherent feature available in to the Atlassian Guard to apply a policy to not just managed users but also to external users added to the org.
It seems that the only way to do it now is to either manually audit user access or implement automations through an integrated IdP like Crowd or Okta.
It seems like Atlassian Guard is turning out to just be a paywall to features that should be native to the platform.