Term · 3. Account Management & Provisioning
Identity Deprovisioning
Definition
Identity deprovisioning is the process of revoking an individual’s access rights, credentials, and associated entitlements to systems and services when they leave an organization or change roles. It typically includes disabling or deleting accounts, invalidating authentication factors, and removing authorizations in authoritative and downstream systems. Effective identity deprovisioning reduces the risk of orphaned accounts and unauthorized access after a user’s relationship with the organization ends or changes.
Related terms
-
Identity Data Fabric
Architectural pattern that consolidates identity data from all enterprise sources (HR, IGA, IAM, PAM, AD, Entra, cloud, …
-
Identity Hygiene
Discipline of maintaining clean, accurate, and current identity data and entitlements. Practices include: dormant accoun …
-
Mobile Device Management (MDM)
Mobile Device Management (MDM) — class of solutions for centralized management and protection of mobile devices (smartph …
-
Access Control Rules (ACR)
Specific permissions or policy statements defining who can access what under which conditions. In RBAC: role-permission …
-
Access Request Process
Access Request Process is the structured set of steps through which a subject (such as a user, service account, or appli …
-
Account Management
Account management is the set of administrative and technical processes used to create, modify, disable, and delete user …