I’m just after some assistance or advice on how to manage the deletion of Password Manager Pro users? I need to know how others businesses manage this process because the way this software was designed it is a very convoluted process.

Due to the size of our organisation we have people leaving nearly every two weeks. Originally it hasn't been an issue because we had sufficient licenses and when the AD account is disabled or deleted the access to PMP would not work and that particular users Groups and resources would still be available for everyone to use and share.

Now we are coming close to our license limit we have to remove Password Admins but doing this will involve a very complicated process. PMP support have suggested the following:

1. Ask the leaving employee to logon to Password manager pro and…

2. Transfer their Groups then…

3. Transfer their resources

Or

Ok the first option would not be followed because I doubt the person leaving would care if the resources are transferred or not. The second option is actually against our privacy policy because we are logging in using their AD accounts and in PMP we will have access to their personal password section.

There has to be an easier way to manage this??

I suggested a change of PMP to accommodate the following:

When a user is disabled or deleted in AD, it automatically flags the PMP user account as disabled. PMP then alerts all PMP administrators who then can action a transfer. The transfer should be a two step process where they transfer everything under that user with one click (excluding personal passwords) to another user of their choosing. The second step is an approval process where at least 3 administrators have to approve.