Skip to content
AscendCore
Back to Runbook Library
Identity Template: configurable per customer

Dormant Account Review

Find accounts inactive beyond a configurable threshold and propose disabling them in one approval-gated review, fully audited.

Integrates with

OktaEntra ID

The problem

Inactive accounts are a quiet liability. Departed contractors, abandoned test users, and forgotten service logins keep their access until someone goes looking, which usually only happens during an audit.

What AscendCore does

On a schedule, AscendCore queries the identity provider for accounts whose last sign-in is past your threshold and posts a single review card listing them. An approver selects which to disable, and AscendCore disables them and records the decision in the audit chain.

Status

Template. The inactivity threshold and review cadence are configurable per customer. Connect it to your Okta or Entra ID tenant to enable.

Runbook source preview

Versioned, deterministic, auditable

Every runbook is defined as a versioned YAML manifest with explicit triggers, steps, and approval policies. The runbook itself is the audit-ready record of what AscendCore can and will do. Chat is just the interface that triggers it.

name: dormant-account-review
trigger:
  schedule: weekly
steps:
  - query_inactive_accounts    # last-sign-in beyond threshold
  - build_review_card
  - admin_approval
  - disable_selected_accounts
approval:
  required: true
  approvers: [it-admins, sec-team]
Want this runbook?

Configure dormant account review for your environment

Templates are configurable per customer environment. Talk to us about the specific systems and approval flow you need.

See plans & pricingBrowse all runbooks

More identity runbooks

Live

Access Role Change

Multi-system orchestrated role transitions for promotions, transfers, and contractor-to-FTE conversions. Five seed roles ship out of the box (support tiers, sales SDR/AE, engineering contractor/FTE/intern, HR generalist/manager); each transition produces a single approval card showing the full access diff and executes sequentially across Okta + Entra + Jira + M365 with per-step audit outcomes.

Read more
Live

Account Unlock

Automate Microsoft Entra ID and Okta account unlocks from Slack and Teams. Identity verification, approval-gated unlock, failed-login counter reset.

Read more
Live

Group Membership Management

Automate Microsoft Entra security group, M365 group, and distribution list membership changes from Slack and Teams. Name-resolved, approval-gated, idempotent.

Read more