Skip to content

Commit 2004ba2

Browse files
OWinfreyATLOWinfreyATL
committed
updates
1 parent c657279 commit 2004ba2

File tree

1 file changed

+0
-31
lines changed

1 file changed

+0
-31
lines changed

articles/active-directory/governance/entitlement-management-access-package-assignments.md

Lines changed: 0 additions & 31 deletions
Original file line numberDiff line numberDiff line change
@@ -189,37 +189,6 @@ $policy = $accesspackage.AssignmentPolicies[0]
189189
$req = New-MgEntitlementManagementAccessPackageAssignmentRequest -AccessPackageId $accesspackage.Id -AssignmentPolicyId $policy.Id -TargetEmail "[email protected]"
190190
```
191191

192-
## Manage guest user lifecycle (preview)
193-
194-
Entitlement management also allows you to get visibility into state of a guest user's lifecycle through the following viewpoints:
195-
196-
- **Governed** - The guest user is set to be governed.
197-
- **Ungoverned** - The guest user is set to not be governed.
198-
- **Blank** - The lifecycle for the guest user is not determined. This happens when the guest user had an access package assigned before managing user lifecycle was possible.
199-
200-
> [!NOTE]
201-
> When a guest user is set as **Governed**, based on ELM tenant settings their account will be deleted or disabled in specified days after their last access package assignment expires. Learn more about ELM settings here: [Manage external access with Azure Active Directory entitlement management](../fundamentals/6-secure-access-entitlement-managment.md).
202-
203-
You can directly convert ungoverned users to governed by using the **Mark Guests as Governed ( preview)** functionality in the top menu bar.
204-
205-
To manage user lifecycle, you'd follow these steps:
206-
207-
**Prerequisite role:** Global administrator, User administrator, Catalog owner, Access package manager or Access package assignment manager
208-
209-
1. In the Azure portal, select **Azure Active Directory** and then select **Identity Governance**.
210-
211-
1. In the left menu, select **Access packages** and then open the access package.
212-
213-
1. In the left menu, select **Assignments**.
214-
215-
1. On the assignments screen, select the user you want to manage the lifecycle for, and then select **Mark guest as governed (Preview)**.
216-
:::image type="content" source="media/entitlement-management-access-package-assignments/govern-user-lifecycle.png" alt-text="Screenshot of the govern user lifecycle selection.":::
217-
1. Select save.
218-
219-
## Manage user lifecycle programmatically
220-
221-
To manage user lifecycle programatically using Microsoft Graph, see: [accessPackageSubject resource type](/graph/api/resources/accesspackagesubject).
222-
223192
## Remove an assignment
224193

225194
You can remove an assignment that a user or an administrator had previously requested.

0 commit comments

Comments
 (0)