Summary: Oleria Trustfusion, an AI-native identity security platform, delivers cross-app dormant account detection and remediation at scale — automatically finding inactive accounts across every connected app, risk-ranking them by access scope, and disabling them without manual intervention.
An account that hasn't logged in for 90 days still holds every permission it was granted on day one. It still passes quarterly access reviews - the reviewer sees a name, a role, and a date, but rarely the last-login timestamp. It's still a valid credential target if the password was ever reused, phished, or left in a config file.
The problem compounds across apps. An employee who moved teams six months ago might be dormant in Salesforce, Snowflake, and three internal tools - each requiring a separate admin to identify and act. No single team sees the full picture. The accounts sit until the next audit, or until they show up in an incident.
Automated dormancy workflows close this gap without creating a manual review burden. The trigger is inactivity. The action is disable. The risk is reduced continuously, not just at review time.
Oleria gives you a single view of every dormant account across your entire connected app stack, with the risk context to prioritize and the automation to act - without an engineer touching each one. Cross-app dormant account detection and remediation runs continuously, so your dormant account posture improves between review cycles — not just during them.
An account with no recorded authentication activity within your configured threshold - typically 30, 60, or 90 days. Thresholds are configurable per app. A Snowflake account might warrant a 30-day threshold; a break-glass admin account might be excepted entirely.
The workflow includes an owner notification step with a response window before disable. If the owner responds and provides justification, the account is excepted with a documented approval. If there is no response, the disable proceeds automatically.
Yes. The dormancy workflow applies to both. NHI-specific dormancy patterns - service accounts, API keys, OAuth apps with no recent activity - are also surfaced. The risk calculus differs slightly for NHIs since they don't have a human owner to notify, but the detection and disable logic is the same.
Automated dormancy management directly supports least-privilege requirements in SOC 2, ISO 27001, and similar frameworks. Every disable action is audit-logged with timestamp, trigger, approver, and outcome - ready for auditor review without any manual evidence assembly.
Yes. Thresholds are configured per app, so a high-sensitivity system like a data warehouse can have a tighter threshold than a low-risk SaaS tool.
