<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Deleting an Inactive User via Okta Automations
Oct 14, 2025
Administration
Okta Classic Engine
Okta Identity Engine
Overview

Okta Automations facilitates preparation and response to situations that arise during the lifecycle of end users assigned to an Okta group. This article explains how to set up automations to help change the lifecycle status of an inactive account. 

Applies To
  • Workflow Automation
  • Conditions
  • User Inactivity in Okta
Solution

Automations can be implemented by following the steps below: 

  1. On the Okta Admin Console, navigate to the Workflow menu, expand it, and select Automation.
  2. Press the Add automation button to create a new automation, or click the Pencil icon on the right side of the box to find an existing one to edit.
  3. Once created, automations require two components in order to function properly: Conditions and Actions.

Automations

  1. In order to set up an automation that will deactivate inactive users, the following conditions and actions should be set: 
    • Schedule condition: This setting allows setting a specific time when the automation should run and the frequency (daily / once).
    • Group membership condition: This setting gives granularity in terms of what groups are targeted by the automation.
    • Additional condition: Two options will be available, but the one to be selected is User Inactivity in Okta. This condition will be followed by the Duration setting (days).
      • This option looks for only active users who have not logged into Okta for a set number of days. Also, this does not check if the users are active in apps they log into through Okta because application session lengths may vary.
        For this reason, Okta recommends setting the Duration in the User Inactivity condition to be the same as or higher than the application length configuration.
        The duration is applied retroactively based on the user's current last login timestamp, not the policy's applied date.

Add condition

    • Action: To delete the Inactive user account, the Action Type is Change user lifecycle in Okta, and the state will be Deleted.

Add Action

  1. Activate the automation. At the bottom of the Actions box, it should show when the automation last ran and when it will run again.

NOTE: Make sure the user account status is Active. Active status also includes:

  • Users with a pending action.
  • Users who require a password reset.
  • Users with expired passwords.
  • Locked users. 

Related References

Recommended content

Still looking for help?
Loading
Deleting an Inactive User via Okta Automations