As part of compliance, we are to remove/disable access if there is no activity from any particular user for >90 calendar days.
The current mode of monitoring, is by looking at the last login status of the user.
Synchro allows the session to continue and as such does not force the user to login again even though they are actively using the application.
So one way is to have a session expiry, so that the users will be forced to login after a certain number of days. So that the login activity will be captured in the report.
This will be optimal to refer to one list to identify the users activity.
Alternatively, if there is another report to capture the user’s activities in Synchro; that could be a potential workaround.
At least we do not unnecessarily remove/disable the accounts that are actively using the application.
Thank you for your idea. Currently, the session refresh token is active for 1 week. If no activity is present, the user gets logged out and needs to enter credentials to get back into the application. We believe this fits the compliance requirements.