This policy will create an incident when Flexera SaaS Manager identifies integrated SaaS application user accounts that have been deactivated for longer than a user-specified threshold. An incident is raised with a list of these users.
This policy uses the SaaS Management API to retrieve a list of managed SaaS applications. The policy then obtains a list of integrated applications for each managed SaaS application and their users. The policy then filters for users with a deactivatedAt date and calculates the number of days since the user was deactivated.
This policy has the following input parameters required when launching the policy.
- Email Addresses - Email addresses of the recipients you wish to notify when new incidents are created.
- Applications - A list of parent application names and/or IDs to check for deactivated users. Leave blank to check all applications.
- Inactive Days Threshold - Number of days since user was deactivated to include it in the results.
- Send an email report
This Policy Template uses Credentials for authenticating to datasources -- in order to apply this policy you must have a Credential registered in the system that is compatible with this policy. If there are no Credentials listed when you apply the policy, please contact your Flexera Org Admin and ask them to register a Credential that is compatible with this policy. The information below should be consulted when creating the credential(s).
For administrators creating and managing credentials to use with this policy, the following information is needed:
- Flexera Credential (provider=flexera) which has the following Flexera SaaS Manager permissions:
SaaS Manager: Viewer
The Provider-Specific Credentials page in the docs has detailed instructions for setting up Credentials for the most common providers.
- Flexera
This policy template does not incur any cloud costs.