I'm looking to set up some automation around how our service desk is disabling, and subsequently deleting Active directory accounts. I have the disable/delete policies setup in terms of what I want to happen for both. I'm now looking at the options under the deprovisioning automation that is built in.

My question is, when our service desk gets a termination report from HR and then disables the account through AD Manager, how do I configure the automation policy such that it will follow the deletion flow in 30 days? Right now I have the "instant action" set to "disable user", then in "successive tasks" I set it to delete users after 30 days. Then I set an automation schedule to run daily that points to the deprovisioning policy using the "Disabled users" report as the input.

Am I close? Will the instant task in the deprovision automation simply be skipped if the service desk is the one who disabled the account? And will the successive task (the account deletion) be executed properly if the account was disabled by the technician?

Thanks in advance.