Execute employee offboarding tasks in real-time on their last day of work with Azure portal (preview)
This tutorial provides a step-by-step guide on how to execute a real-time employee termination with Lifecycle workflows using the Azure portal.
This off-boarding scenario will run a workflow on-demand and accomplish the following tasks:
- Remove user from all groups
- Remove user from all Teams
- Delete user account
You may learn more about running a workflow on-demand here.
- Azure AD Premium P2
For more information, see: License requirements
Before you begin
As part of the prerequisites for completing this tutorial, you'll need an account that has group and Teams memberships and that can be deleted during the tutorial. For more comprehensive instructions on how to complete these prerequisite steps, you may refer to the Preparing user accounts for Lifecycle workflows tutorial.
The leaver scenario can be broken down into the following:
- Prerequisite: Create a user account that represents an employee leaving your organization
- Prerequisite: Prepare the user account with groups and Teams memberships
- Create the lifecycle management workflow
- Run the workflow on-demand
- Verify that the workflow was successfully executed
Create a workflow using leaver template
Use the following steps to create a leaver on-demand workflow that will execute a real-time employee termination with Lifecycle workflows using the Azure portal.
Sign in to Azure portal
On the right, select Azure Active Directory.
Select Identity Governance.
Select Lifecycle workflows (Preview).
For the user selection, select Select users. This allows you to select users for which the workflow will be executed immediately after creation. Regardless of the selection, you can run the workflow on-demand later at any time as needed.
Run the workflow
Now that the workflow is created, it will automatically run the workflow every 3 hours. Lifecycle workflows will check every 3 hours for users in the associated execution condition and execute the configured tasks for those users. However, for the tutorial, we would like to run it immediately. To run a workflow immediately, we can use the on-demand feature.
Be aware that you currently cannot run a workflow on-demand if it is set to disabled. You need to set the workflow to enabled to use the on-demand feature.
To run a workflow on-demand, for users using the Azure portal, do the following steps:
- On the workflow screen, select the specific workflow you want to run.
- Select Run on demand.
- On the select users tab, select add users.
- Add a user.
- Select Run workflow.
Check tasks and workflow status
At any time, you may monitor the status of the workflows and the tasks. As a reminder, there are three different data pivots, users runs, and tasks that are currently available in public preview. You may learn more in the how-to guide Check the status of a workflow (preview). In the course of this tutorial, we'll look at the status using the user focused reports.