Besides good practice is there any technical reason why an inactive user should be removed from a permission set?

Question

I have users that are deactivating users but they are not removing the permission sets, aside from just being good practice in keeping our org clean and up to date is there any other technical reason why they should be removing inactive users from permission sets?

George D · Answer

There is no technical reason since permission sets are used to give some type of permission to an user. Usually deactivated users can cause technical issues when they are running user for a report for example. You mentioned that your users are not removing the inactive user from the permisison set. How about automating this process?   This blog post explains how you can do it:  https://jenwlee.wordpress.com/2017/02/14/automated-cleanup-when-user-is-deactivated-remove-user-from-permission-sets/

Besides good practice is there any technical reason why an inactive user should be removed from a permission set?

Security

Related Learning

More Help