I work with a Confluence setup using SSO that authenticates users via ldap. Upon trying to deactivate inactive users, we noticed some users asked to be reactivated because they were using the site even though their "last login" on their profiles did not show a recent login (within this year). I confirmed that several users did not show an accurate last login date (ie off by weeks or more). Other last login dates are fairly accurate within a day or two. Does anyone know what might be going on? Is there an accurate last login metric?
It can be that your SSO solution does not updates the last login attribute, and the date is set on users that have done a non-SSO login (hypothesis). Do you make use of a third party SSO add-on, and if so, which one?
Regards,
Jon Espen
Kantega SSO
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.