Configurable Inactive Computer Account Threshold for Risk Assessment Reports

Products Auditor Ideas
,
1

What is a one sentence summary of your feature request?

Allow administrators to configure the inactivity threshold for computer accounts in Risk Assessment reports, including setting it to 90 days instead of the default 35 days.

Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.

The current inactive computer accounts report uses a fixed default inactivity threshold of 35 days. In our environment, computer accounts are considered inactive only after 90 days in accordance with internal security policies and operational requirements.

Providing a configurable inactivity threshold would allow organizations to align Risk Assessment reports with their own policies, reduce false positives, and focus on genuinely inactive computer accounts. This would improve the accuracy and relevance of Risk Assessment findings.

How do you currently solve the challenges you have by not having this feature?

Currently, there is no built-in option to modify the inactivity threshold in the Risk Assessment report. As a result, we must manually review and validate reported inactive computer accounts, which increases administrative effort and reduces the effectiveness of the report.

2

Thank you, Ali!
This one has the most votes of your related set, which reflects how widespread this concern is! A configurable inactivity threshold for user accounts is one of the clearest quality-of-life improvements we could make to Risk Assessment. We fully agree that a single hardcoded value cannot serve all organizations, especially those with compliance frameworks that specify different inactivity windows (NIST, CIS, internal policy, etc.). We are treating this and the companion computer account threshold request (#3 in this batch) together. Both will be shared with the Risk Assessment product team for prioritization.
Please feel free to upvote this idea to help signal priority to our team. We will update the thread when there is news on this front.