![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 80%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EUS%3C/text%3E%3C/svg%3E)
25,089 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 2%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Hello @Utkarsh Sharma , you can set the auto-expiration and auto-renewals for Microsoft 365 groups in Azure AD using the expiration policies. You can read more on that here: https://learn.microsoft.com/en-us/azure/active-directory/enterprise-users/groups-lifecycle
But for other types of groups like the groups which are synced from On-Prem to Azure AD or Security Groups in Azure AD, there is no automated way to figure out when these groups were last used, as there is no such attribute in Azure AD that holds that information, unlike users where they have the lastLogonTime set.
The other way that I can think of is churning the Azure AD Audit logs for the groups and figure filtering them with the specified time limit of your desire and then creating a list from that of the group names. Then you can create a PS script to delete those unwanted groups.
You can try the following cmdlet to list down the groups from Azure AD Audit logs: Get-AzureADAuditDirectoryLogs -Filter "category eq 'GroupManagement' and activityDateTime lt 2020-11-10"
Hope this helps.
Do let us know if this helps and if there are any more queries around this, please do let us know so that we can help you further. Also, please do not forget to accept the response as an Answer; if the above response helped in answering your query.