Hey everyone,
I'm looking to identify Azure AD accounts that haven't logged in for over 30 days. I work at a company with many frontline employees using F1 licenses. These employees have AD accounts synced with Azure AD, but most of them don't log into corporate computers, making it tough to gather info via local AD.
The only platform they access is the Workday app, either on personal devices or through a Workday setup that connects to Azure AD. Management has requested a list of users who haven't logged in at least once in the past 60 days.
Has anyone tackled a similar task before? I'd love to hear about the best methods to find this info and ideally set it up as a scheduled report to keep tabs on inactive accounts.
1 Answer
You should definitely consider using the Graph API. If Workday has SSO set up with Entra as the identity provider, it can help you pull the necessary data about user logins.
Thanks for the tip! I believe it does have Workday SSO. Can you elaborate on how to use Graph to track inactivity without needing specific code? Just looking for a general process since it’s my first time diving into this.