Comment on page
Role Assigned to Azure Cloud Only Account
Detects if an account is assigned applications and permissions in Microsoft Entra ID, but not Active Directory. Because termination processes start with Active Directory, former employees can retain access to applications in Microsoft Entra ID via these disconnected accounts that exist only in AAD.
We recommend verifying why the role has been assigned to the account.