Manage Inactive Users for Confluence
- ILA eSolution
- SCM ENTHUSIAST
Confluence Data Center Approved 
OWASP Security Verified
Simple add-on to remove License for Inactive users and Deactivate or remove Security access groups for users who left organization.
Use Cases:
- To Remove License for Confluence users who are Never Login or Not active.
- To Deactivate or Remove License Access Security Groups for Confluence users who left company or Not exists in organization directory.
- To restore license Or Grant Access on Successful Login attempt.
- To Search inactive users certain number of days and export to CSV.
- To Notify license alerts.
Features:
- Supports to process Large enterprise users base.
- All Atlassian provided user directories are supported.
- Supports custom remote external Directories, to check user status either active or deactivated.
- Option to choose multiple User Directories to process users.
- Option to process users from specific groups.
- Option to skip users from specific groups.
- Option to rename Deactivated user to {username}_inactive_yyyyMMdd
- Useful REST APIs
Top Trusted Users
- BNP Paribas Bank Polska S.A.
- Paytm Bank
- OTP Bank
- OCBC Bank
- Autodesk
- Thales
- Expedia
- Broadcom
- Intel
Quick Start Steps.
Here is Quick Start Steps to start using this plugin.
USE CASE #1
Go to, System General Configuration > Click Manage Inactive Users
Use Case 1 --- To reduce the license count.
Configuration to Remove License or Access Security Groups for Confluence users who are Never Login or Not active.
Please see, Manage Inactive Confluence Users
USE CASE #2
Use Case 2 --- To deactivate users. (Optional)
Configuration to Deactivate and Remove Access Security Groups for Jira users who left company or Not exists in organization directory.
- Validates user status either active or deactivated in Atlassian supported user directories or a custom remote user directories like Okta, Google G-Suite and Azure AD.
Please see, Manage Former X Confluence Users
USE CASE #3
Use Case 3 --- Automatic license reclamation
To enable / grant Login access back to those inactive users automatically.
Please see, Confluence License reclamation
DEBUG
Two ways to Debug Manage Inactive Users App i.e.
>>> Through atlassian log file — atlassian-confluence.log
Go to, System General Configuration > Logging and profiling > Add New Entry.
Class/Package Name: com.tse.confluence.deactivateusers.plugin Level: Debug
>>> Through Audit log.
Go to, System General Configuration > Audit log.
CUSTOMER #1 FEEDBACK
We use manage Inactive users plugin along side with Atlassian provided SAML / SSO Plugin for Overall Security as per InfoSec guideline.
- To deactivate users who left company in Delegated User Directory.
- To Clean up Inactive users who are not logged in last 90 days.
- Grant license to Inactive users who comes back on successful attempt.
Atlassian provided SAML SSO plugin with Delegated LDAP / AD User Directory On login:
- Helps us to create new users with default group.
- Helps us to trigger groups synchronise from AD LDAP / Okta with custom prefix.
CUSTOMER #2 FEEDBACK
We used manage Inactive users plugin's REST API to migrate AD Users from Company X to Company Y.
From Connector User Directory to Delegated User Directory.
Step-1, We created New Delegated User Directory.
Step-2, Go to database update existing connector user directory users in cwd_user, membership and group tables with delegated directory ID
Step-3, Use manage Inactive users plugin's attribute update REST API to rename username and email addresses.
CUSTOMER #3 FEEDBACK
We use Manage Inactive users plugin with Re:Solution SAML plugin.
- To deactivate users who left company in Delegated User Directory.
- To Clean up Inactive users who are not logged in last 90 days.
- Re:Solution SAML plugin helps to provision / grant license on login.
CUSTOMER #4 FEEDBACK
We use Manage Inactive users plugin with MiniOrange SAML plugin.
- To deactivate users who left company in Delegated User Directory.
- To Clean up Inactive users who are not logged in last 180 days.
- MiniOrange SAML plugin helps to provision / grant license on login.
Please see, Common Asked Questions and Hints