Detects if an account is assigned applications and permissions in Microsoft Entra ID, but not Active Directory. Because termination processes start with Active Directory, former employees can retain access to applications in Microsoft Entra ID via these disconnected accounts that exist only in AAD.

Recommended Actions

We recommend verifying why the role has been assigned to the account.

Compatibility

Microsoft Entra ID