Skip to main content

Some context related to user regulation, we found that once users are imported, we can not delete them on the console.

We would like to control that only certain users can use Netskope service but integrated idp will have all employee information including ex-employees, so they can still using Netskope SSE and we can only manually set blocking policy to stop their access.

In this case, we haven’t come out a way to grant only rightful users to enable Netskope clients, and stop/remove Netskope clients from their byod.

Does anyone have any suggestion on this?
How can we develop a better user regulation mechanism to enable correct amount of licensed user?

Thanks a lot.

How are your users imported? You should be able to selectively import users to Netskope.

  • If you are using the Directory Importer, you can limit the users provisioned by LDAP group/OU.
  • If you are using SCIM, I would expect your IDP to be able to filter by group membership.

Both of these methods support user removal/de-provisioning.


Hi there, we notice that user provisioning (removal and add) can be handled by integration with directory importer.
However, we worry that if we are using 2 directory importers importing users under same domain, will the provisioning interfered interactively?


I don’t believe that is a supported configuration.


You should only be provisioning users via a single method (directory importer/SCIM) per domain.

 


Reply