Manage Inactive Users for Confluence

Owned by ILA eSolution
Last updated: Aug 28, 2024
2 min read

Confluence Data Center Approved (tick)

OWASP Security Verified (tick) 

Simple add-on to remove License for Inactive users and Deactivate or remove Security access groups for users who left organization.

Use Cases:

  • To Remove License for Confluence users who are Never Login or Not active.
  • To Deactivate or Remove License Access Security Groups for Confluence users who left company or Not exists in organization directory.
  • To restore license Or Grant Access on Successful Login attempt.
  • To Search inactive users certain number of days and export to CSV.
  • To Notify license alerts.

Features:

  • Supports to process Large enterprise users base.
  • All Atlassian provided user directories are supported.
  • Supports custom remote external Directories, to check user status either active or deactivated.
  • Option to choose multiple User Directories to process users.
  • Option to process users from specific groups.
  • Option to skip users from specific groups.
  • Option to rename Deactivated user to {username}_inactive_yyyyMMdd
  • Useful REST APIs


Top Trusted Users

  • BNP Paribas Bank Polska S.A.
  • Paytm Bank
  • OTP Bank
  • OCBC Bank
  • Autodesk
  • Thales
  • Expedia
  • Broadcom
  • Intel

Quick Start Steps.

Here is Quick Start Steps to start using this plugin.


USE CASE #1

Go to, System General Configuration > Click Manage Inactive Users

Use Case 1 --- To reduce the license count.

Configuration to Remove License or Access Security Groups for Confluence users who are Never Login or Not active.

Please see, Manage Inactive Confluence Users


USE CASE #2

Use Case 2 --- To deactivate users. (Optional)

Configuration to Deactivate and Remove Access Security Groups for Jira users who left company or Not exists in organization directory.

  • Validates user status either active or deactivated in Atlassian supported user directories or a custom remote user directories like Okta, Google G-Suite and Azure AD.

Please see, Manage Former X Confluence Users


USE CASE #3

Use Case 3 --- Automatic license reclamation

To enable / grant Login access back to those inactive users automatically.

Please see, Confluence License reclamation



DEBUG

Two ways to Debug Manage Inactive Users App i.e.

>>> Through atlassian log file — atlassian-confluence.log

Go to, System General Configuration > Logging and profiling > Add New Entry.

Class/Package Name: com.tse.confluence.deactivateusers.plugin
Level: Debug

>>> Through Audit log.

Go to, System General Configuration > Audit log.




CUSTOMER #1 FEEDBACK

We use manage Inactive users plugin along side with Atlassian provided SAML / SSO Plugin for Overall Security as per InfoSec guideline.

  • To deactivate users who left company in Delegated User Directory.
  • To Clean up Inactive users who are not logged in last 90 days.
  • Grant license to Inactive users who comes back on successful attempt.

Atlassian provided SAML SSO plugin with Delegated LDAP / AD User Directory On login:

  • Helps us to create new users with default group.
  • Helps us to trigger groups synchronise from AD LDAP / Okta with custom prefix.



CUSTOMER #2 FEEDBACK

We used manage Inactive users plugin's REST API to migrate AD Users from Company X to Company Y.

From Connector User Directory to Delegated User Directory.

Step-1, We created New Delegated User Directory.

Step-2, Go to database update existing connector user directory users in cwd_user, membership and group tables with delegated directory ID

Step-3, Use manage Inactive users plugin's attribute update REST API to rename username and email addresses.



CUSTOMER #3 FEEDBACK

We use Manage Inactive users plugin with Re:Solution SAML plugin.

  • To deactivate users who left company in Delegated User Directory.
  • To Clean up Inactive users who are not logged in last 90 days.
  • Re:Solution SAML plugin helps to provision / grant license on login.


CUSTOMER #4 FEEDBACK

We use Manage Inactive users plugin with MiniOrange SAML plugin.

  • To deactivate users who left company in Delegated User Directory.
  • To Clean up Inactive users who are not logged in last 180 days.
  • MiniOrange SAML plugin helps to provision / grant license on login.


Please see, Common Asked Questions and Hints