logins remove

[elias1003]

what is the best practice when it comes to users that have a Unix login and they no longer work for the company? Should the logins be remove/delete or just disabled them? Thanks

 

[columb]

My vote goes for delete

If they've left what possible reason can there be for anyone to use that login?

If they rejoin then treat them as a new joiner.

On the internet no one knows you're a dog

Columb Healy

 

[elias1003]

Thanks, anybody else have any positive/negative commnets to say.

 

[p5wizard]

IMHO it's not always black or white.

It all depends what they have left on the system.

application scripts
source programs
cron jobs
...

Before you delete/invalidate a user, you may want to scan the system for files owned by that former employee...


HTH,

p5wizard

 

[MoreFeo]

In my previous company the default policy was to disable the user and let it disabled for 6 months. After 6 months, if all went fine, the user's data was archived (for 2 years I think) and the user and it's data deleted from the systems.

 

[khalidaaa]

I think it goes back to how important that person's data to the company! Most likely that person will have someone to handover his/her job so i would guess that he/she will share the data to that person!

If the person's boss gave you the go-ahead to delete the data then why not?

It is always good to follow what p5wizard said as well by looking through the system for scatered user's data that could be important.

Regards,
Khalid