Scenario: An employee left your organization years ago and their user account is still enabled. This poses a couple of problems, let’s take a deep dive.
Why inactive accounts in your Active Directory pose significant risks?
First and foremost, an enabled dormant user account is like leaving your door open a crack. A past employee or contractor could gain access to valuable intellectual property, personal information and financial details. But, more concerning is that these accounts could be used by hackers which could compromise your entire network.
Secondly, the fact that these accounts are unnoticed in Active Directory (AD) demonstrates a policy / process oversight in your organization. When an employee leaves the data related to his or her AD account should be backed up or archived for future requirements and then disabled or removed entirely. In order for these tasks to happen, Human Resources needs to communicate with IT and vice versa. With adequate policy and process in place, you can avoid the above-noted security risks.
Maintaining an up-to-date AD is more than housekeeping. Think about a dormant account like it is one weak link in a chain. Shared user accounts is also another common bad practice.
Experience the peace-of-mind you can attain by finding out about our Technology with Porpoise; contact a Dolphin today.