Manage Inactive Users for Confluence
Confluence Data Center Approved
OWASP Security Verified
Simple add-on to remove License for Inactive users and Deactivate or remove Security access groups for users who left organization.
Use Cases:
To Remove License for Confluence users who are Never Login or Not active.
To Deactivate or Remove License Access Security Groups for Confluence users who left company or Not exists in organization directory.
To restore license Or Grant Access on Successful Login attempt.
To Search inactive users certain number of days and export to CSV.
To Notify license alerts.
Features:
Supports to process Large enterprise users base.
All Atlassian provided user directories are supported.
Supports custom remote external Directories, to check user status either active or deactivated.
Option to choose multiple User Directories to process users.
Option to process users from specific groups.
Option to skip users from specific groups.
Option to rename Deactivated user to {username}_inactive_yyyyMMdd
Top Trusted Users
BNP Paribas Bank Polska S.A.
Paytm Bank
OTP Bank
OCBC Bank
Autodesk
Thales
Expedia
Broadcom
Intel
Quick Start Steps.
Here is Quick Start Steps to start using this plugin.
Use Case #1
Go to, System General Configuration > Click Manage Inactive Users
Use Case 1 --- To reduce the license count.
Configuration to Remove License or Access Security Groups for Confluence users who are Never Login or Not active.
Please see, Manage Inactive Confluence Users
Use Case #2
Use Case 2 --- To deactivate users. (Optional)
Configuration to Deactivate and Remove Access Security Groups for Jira users who left company or Not exists in organization directory.
Validates user status either active or deactivated in Atlassian supported user directories or a custom remote user directories like Okta, Google G-Suite and Azure AD.
Please see, Manage Former X Confluence Users
Use Case #3
Use Case 3 --- Automatic license reclamation
To enable / grant Login access back to those inactive users automatically.
Please see, Confluence License reclamation
Debug
Two ways to Debug Manage Inactive Users App i.e.
>>> Through atlassian log file — atlassian-confluence.log
Go to, System General Configuration > Logging and profiling > Add New Entry.
Class/Package Name: com.tse.confluence.deactivateusers.plugin
Level: Debug>>> Through Audit log.
Go to, System General Configuration > Audit log.
Customer #1 Feedback
We use manage Inactive users plugin along side with Atlassian provided SAML / SSO Plugin for Overall Security as per InfoSec guideline.
To deactivate users who left company in Delegated User Directory.
To Clean up Inactive users who are not logged in last 90 days.
Grant license to Inactive users who comes back on successful attempt.
Atlassian provided SAML SSO plugin with Delegated LDAP / AD User Directory On login:
Helps us to create new users with default group.
Helps us to trigger groups synchronise from AD LDAP / Okta with custom prefix.
CUSTOMER #2 FEEDBACK
We used manage Inactive users plugin's REST API to migrate AD Users from Company X to Company Y.
From Connector User Directory to Delegated User Directory.
Step-1, We created New Delegated User Directory.
Step-2, Go to database update existing connector user directory users in cwd_user, membership and group tables with delegated directory ID
Step-3, Use manage Inactive users plugin's attribute update REST API to rename username and email addresses.
CUSTOMER #3 FEEDBACK
We use Manage Inactive users plugin with Re:Solution SAML plugin.
To deactivate users who left company in Delegated User Directory.
To Clean up Inactive users who are not logged in last 90 days.
Re:Solution SAML plugin helps to provision / grant license on login.
CUSTOMER #4 FEEDBACK
We use Manage Inactive users plugin with MiniOrange SAML plugin.
To deactivate users who left company in Delegated User Directory.
To Clean up Inactive users who are not logged in last 180 days.
MiniOrange SAML plugin helps to provision / grant license on login.
Please see, Common Asked Questions and Hints