I want delete users that have a blocked sign in and users who have not signed in over 90 days

Question

I need help deleting users by last sign in date and have a blocked sign in

Answer 1

Hello @Robert Rajnys ,

Thank you for reaching out to Microsoft QnA platform. I would like to confirm that you can export list of all users with Account Enabled Status and LastSignInDateTime.

You can use following command from Microsoft Graph PowerShell Beta module.

Get-MgBetaUser -All -Property 'AccountEnabled','UserPrincipalName','SignInActivity','Mail','DisplayName' | Select-Object @{N='UserPrincipalName';E={$_.UserPrincipalName}}, @{N='AccountEnabled';E={$_.AccountEnabled}}, @{N='DisplayName';E={$_.DisplayName }}, @{N='LastSignInDate';E={$_.SignInActivity.LastSignInDateTime}} | Export-Csv -Path C:\usernew1.csv -NoTypeInformation -NoClobber

From this list you should be able to figure out all the blocked/disabled users and delete them later.

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Answer 2

Hi @Robert Rajnys

Thank you for posting this in Microsoft Q&A.I understand that you want delete users that have a blocked sign in and users who have not signed in over 90 days.

Below is the sample PowerShell script

Connect-MgGraph -Scopes 'AuditLog.Read.All'
$90Days = (Get-Date).AddDays(-90)
Get-MgUser -All -Property 'UserPrincipalName','SignInActivity','AccountEnabled' | Select-Object @{N='UserPrincipalName';E={$_.UserPrincipalName}}, @{N='LastSignInDate';E={$_.SignInActivity.LastSignInDateTime}}, @{N='AccountEnabled';E={$_.AccountEnabled}}| Where-Object { $_.LastSignInDate -lt $90Days -and $_.AccountEnabled -ne 'True'}

Hope this helps. Do let us know if you any further queries.

Thanks,

Navya.

If the answer is helpful, please click "Accept Answer" and kindly upvote it.