This playbook sets the user status to terminated in the organization by updating the incident information and User Profile indicator with values indicating termination, and disabling the account in the supported apps.
This playbook uses the following sub-playbooks, integrations, and scripts.
This playbook does not use any sub-playbooks.
- Active Directory Query v2
- Okta IAM
This playbook does not use any scripts.
|indicator||The User Profile indicator, if found during previous search.||indicator.None||Optional|
|CreatedIndicator||The created User Profile indicator, if created previously in the IAM - Sync User playbook.||CreatedIndicator.None||Optional|
|IAM.Vendor||Details the changes that were made in Active Directory or Okta.||unknown|
|IAM.Vendor.active||Indicates if the user is active or not. Can be true or false.||unknown|
|IAM.Vendor.details||Lists the user details as they appear in the vendor.||unknown|
|IAM.Vendor.email||The user email as it appears in the vendor records.||unknown|
|IAM.Vendor.errorCode||HTTP error response code.||unknown|
|IAM.Vendor.errorMessage||Reason why the API failed.||unknown|
|IAM.Vendor.id||The user ID as it appears in the vendor records.||unknown|
|IAM.Vendor.instanceName||Name of the instance used for provisioning.||unknown|
|IAM.Vendor.success||Indicates if the vendor was successfully updated. Can be true or false||unknown|
|IAM.Vendor.brand||Name of the integration.||unknown|
|IAM.Vendor.username||The username as it appears in the vendor records.||unknown|
|IAM.Vendor.action||The action that was performed on the user record.||unknown|
|IAM.UserProfile||The user's profile.||unknown|