Advertisement
Today I find myself cleaning up web accounts for a user whose last day was Friday. This user had been with us awhile and has a decent number of online accounts. I don’t like the idea of old accounts sitting out there, so I do my best to close every account. While we have some accounts as business accounts with admin access, there are many accounts that simply do not have this option and I find myself logging in (I have all the credentials,) to delete or deactivate the accounts. Some of the accounts, I have to call or email to get deactivated. Something that I would like to discuss with my supervisor is implementing a password manager to make keeping track of those accounts simpler. (I have the credentials from the saved passwords in the browser.)<\/p>\n
I am wondering today how some of you handle this? Do you have to go through each one yourself? Is this responsibilty passed off somehow? (I don’t I have that option myself and I would have time to be able to do this.) Maybe there is a better solution for this that I have not found yet…<\/p>","upvoteCount":8,"answerCount":17,"datePublished":"2025-04-07T16:05:22.698Z","author":{"@type":"Person","name":"ajason","url":"https://community.spiceworks.com/u/ajason"},"suggestedAnswer":[{"@type":"Answer","text":"
Today I find myself cleaning up web accounts for a user whose last day was Friday. This user had been with us awhile and has a decent number of online accounts. I don’t like the idea of old accounts sitting out there, so I do my best to close every account. While we have some accounts as business accounts with admin access, there are many accounts that simply do not have this option and I find myself logging in (I have all the credentials,) to delete or deactivate the accounts. Some of the accounts, I have to call or email to get deactivated. Something that I would like to discuss with my supervisor is implementing a password manager to make keeping track of those accounts simpler. (I have the credentials from the saved passwords in the browser.)<\/p>\n
I am wondering today how some of you handle this? Do you have to go through each one yourself? Is this responsibilty passed off somehow? (I don’t I have that option myself and I would have time to be able to do this.) Maybe there is a better solution for this that I have not found yet…<\/p>","upvoteCount":8,"datePublished":"2025-04-07T16:05:22.762Z","url":"https://community.spiceworks.com/t/cleaning-up-old-user-website-accounts/1194026/1","author":{"@type":"Person","name":"ajason","url":"https://community.spiceworks.com/u/ajason"}},{"@type":"Answer","text":"
For these web accounts do you and other IT team members have admin access to them? Or are these accounts that were setup by the employee?<\/p>\n
We’ve got a lot of apps that use SSO so lots of them support SCIM provisioning & deprovisioning, which is nice. But we’ve got some that need manual deprovisioning so we login to each of those apps to disable or remove the account. Our IT team handles this exclusively for the sake of auditing purposes to confirm they were deactivated. A password manager will be a huge help in tracking the accounts that exist.<\/p>","upvoteCount":1,"datePublished":"2025-04-07T17:50:13.163Z","url":"https://community.spiceworks.com/t/cleaning-up-old-user-website-accounts/1194026/2","author":{"@type":"Person","name":"tb33t","url":"https://community.spiceworks.com/u/tb33t"}},{"@type":"Answer","text":"
Some of them, we have admin access. Those don’t concern me since the admin access makes it easy to add or remove users.<\/p>\n
My concern is with accounts set up by the users. There are some departments that have accounts that I would have no clue about. This former employee that I am cleaning up accounts for today is a good example of that. He was into a woodworking category of our business and the first that I learned of these accounts were this morning as I start checking into what he had. Some of the companies that we deal with have online accounts, but they set them up and delete them internally, requiring me to email or call them for removal.<\/p>","upvoteCount":0,"datePublished":"2025-04-07T18:10:17.010Z","url":"https://community.spiceworks.com/t/cleaning-up-old-user-website-accounts/1194026/3","author":{"@type":"Person","name":"ajason","url":"https://community.spiceworks.com/u/ajason"}},{"@type":"Answer","text":"
For accounts setup by users for systems that we don’t manage we don’t bother trying to find these accounts and delete them. We’ll generally keep an email account active for 30 days to see if there’s any email that’s needed to look over. Especially in your case where there’s a long-time employee who likely has lots of important archived information attached to their account.<\/p>","upvoteCount":2,"datePublished":"2025-04-07T18:50:26.246Z","url":"https://community.spiceworks.com/t/cleaning-up-old-user-website-accounts/1194026/4","author":{"@type":"Person","name":"tb33t","url":"https://community.spiceworks.com/u/tb33t"}},{"@type":"Answer","text":"
So, you don’t consider it an issue to have an old account associated with an unknown (to us,) website still open? I have done that in the past, but my concern was that some of the accounts may allow purchasing on behalf of the company or have credit card info saved as a payment.<\/p>","upvoteCount":1,"datePublished":"2025-04-07T19:28:51.467Z","url":"https://community.spiceworks.com/t/cleaning-up-old-user-website-accounts/1194026/5","author":{"@type":"Person","name":"ajason","url":"https://community.spiceworks.com/u/ajason"}},{"@type":"Answer","text":"
I see where you’re coming from as the security perspective to protect your company from fraud/theft and misuse of spending. If I know about it, I would definitely do my due diligence. But the credit card is tied to the business it should be renewed annually. And this is likely something your legal, finance, & accounting teams should have knowledge of.<\/p>\n
Let’s say someone does make purchases after they are no longer an employee of the company. They just opened a huge legal case against themselves. Will it cause a problem, yes. But if it’s that important to offboard these types of accounts this should be a standard of an offboarding procedure. However, I don’t go out of my way to dig through previous employee email or browser data to find login information unless it’s business critical. If you have to do this with every employee, that’s just a huge time commitment that I currently don’t have. Wish I could be more helpful. Sounds like a big predicament, hopefully most of the employees don’t have this type of access to purchase for or on behalf of the company.<\/p>","upvoteCount":2,"datePublished":"2025-04-07T19:37:30.214Z","url":"https://community.spiceworks.com/t/cleaning-up-old-user-website-accounts/1194026/6","author":{"@type":"Person","name":"tb33t","url":"https://community.spiceworks.com/u/tb33t"}},{"@type":"Answer","text":"
I appreciate the sentiment. I don’t feel that it’s typically a big deal. Most of our users save their passwords in a browser, so it’s easy to export a csv list of all the accounts. I’m not a big fan of browser saved passwords, but we have not invested in a password manager yet, so that is what is being used.<\/p>\n
This particular user had 80 rows in the csv file, so there are a lot of accounts to deal with. A typical employee here probably only has a quarter of that.<\/p>","upvoteCount":2,"datePublished":"2025-04-07T19:41:15.685Z","url":"https://community.spiceworks.com/t/cleaning-up-old-user-website-accounts/1194026/7","author":{"@type":"Person","name":"ajason","url":"https://community.spiceworks.com/u/ajason"}},{"@type":"Answer","text":"