Identity Panel automatically tracks user authentication activity across connected systems. This includes logins, sign-ins to applications, and other forms of authentication. The system uses this data to determine whether an account is actively being used.
If no authentication activity is detected for a specific period, Identity Panel flags the account as inactive. The default thresholds are:
-
90 days of inactivity for full-time employees
-
30 days of inactivity for contingent workers (such as contractors or vendors)
These thresholds help organizations identify dormant accounts, which can pose security risks if left unchecked.
How the Inactivity Rules Are Applied
Inactivity tracking is configured using Identity Panel’s built-in rule engine and time-based policies. The system continuously evaluates activity timestamps and compares them to the current date. When an account exceeds its inactivity threshold, it is automatically marked for follow-up action, such as a compliance review, suspension, or deprovisioning.
This evaluation takes into account employment type, which can be automatically determined from HR or identity system attributes. For example:
-
A rule may evaluate if the user’s
employmentTypeis set toFullTimeorContingent -
Based on that value, the correct threshold is applied
These rules can be customized to fit the organization’s unique policies or regulatory requirements.
Comments
0 comments
Article is closed for comments.