Hi All - I am looking at cleaup process for user accounts across all systems.
I am trying to find list of user whose accounts are locked by either admin/system manager and whose profiles are populated with roles...My idea is give this list to sec admin and ask them to clean up the roles from LOCKED user accounts and move them to group call EXIT.
I tried to pull this by SUIM--last logon, locked a/c's,inactive a/c's and so on......
I am able to pull the list however I have to check each profile to see whether they have roles or not.....which is tedious.....
Is there way where I can only find inactive a/c's with roles populated in them....so that I can give that specific list to L1 ask them to start cleanup procee...?
I would appreciate forum help....thanks in advance...!
Have a good weekend alll
Thanks.