IT OPS

Reclaim SaaS Licenses from SSO Inactivity

Scans SSO login logs nightly for seats with no sign-in past a threshold, then opens a deprovisioning approval thread in Slack so IT can reclaim the license.

CategoryIT Ops

Enginesim

Difficultyintermediate

Triggerschedule

Steps5

Setup~15 min

How it runs

The automated pipeline, trigger to output.

TriggerNightly schedule fires
ActionQuery last login per user/app from SSO logsPostgres
LogicKeep seats idle past threshold
ActionCompose per-seat reclamation summary
OutputPost approval request to Slack channelSlack

What it does

Each night this workflow reads your identity provider's SSO login events from Postgres, flags any user whose last successful sign-in to a tracked SaaS app exceeds your inactivity window (e.g. 45 days), and posts a per-seat reclamation request to a Slack channel for IT approval.

When to use it

Run it when you pay per-seat for tools like Figma, Salesforce, or Notion and suspect dormant accounts are quietly draining budget. It turns a quarterly manual audit into a continuous, low-effort drip.

How it works

1A nightly schedule fires the run.
2The flow queries the SSO event table in Postgres for each user's most recent login per app.
3A logic step keeps only users whose gap since last login exceeds the configured threshold and who still hold an active seat.
4For each flagged seat it composes a summary: user, app, last-seen date, and monthly cost.
5It posts an approval message to Slack with Approve/Keep buttons so IT can decide before the license is pulled.

Set it up

What you configure once, before turning it on.

1
Connect PostgresAny Postgres URL — query, write, migrate.
2
Connect SlackChannels, DMs, threads, mentions.
3
Set each agent's modelWe leave models unset so you pick the tier — fast + cheap, or top-quality.
4
Tune it to your dataEdit the prompts, filters, and field mappings so it matches how your team works.
5
Test, then turn it onRun once against a sample, confirm the output, then enable the trigger.

More IT Ops workflows

Daily Building Anomaly Digest to MS Teams

Each morning queries BigQuery for the prior day's flagged sensor anomalies, summarizes them by site and system into a ranked briefing.

Indoor Air Quality Breach to Tenant Notice and Work Order

Listens for CO2, VOC, or humidity sensor alerts via webhook, and when a zone exceeds occupant-safety limits it emails affected tenants, opens a Monday remediation task.

Self-Service Reclaim Email for Idle Users

Detects users idle in a SaaS app past the threshold and emails each one a keep-or-release link; unanswered seats after the deadline are auto-flagged for removal.

Outlook Room Conflict Resolver with Approval Gate in Teams

When an Outlook room clashes, proposes a rebooking and asks the bumped meeting's organizer to approve the move in Microsoft Teams before any change is made.

Outlook Room Double-Booking Resolver with Auto-Rebook

Detects when two meetings claim the same Outlook room resource and automatically relocates the lower-priority meeting to a comparable free room.

Monthly Wasted-License Cost Report

Aggregates inactive-seat data across all tracked SaaS apps each month, computes total reclaimable spend, and delivers a ranked cost report to leadership in Notion and Slack.

Browse all IT Ops →

Run it inside a business

This workflow drops into a full company template. Import the org, and this is one of the playbooks its agents run.

E-commerce

E-commerce Operator

Listings, support, inventory, and ads — running 24/7.

Finance

Research & Trading Desk

Governance-first research, execution, and risk — every trade on the audit trail.

Operations

Internal Operations

Runbooks, on-call, vendor management — disciplined and audited.

Browse all business templates →Solutions by industry →

Run this workflow in your colony.

14-day trial. No DevOps. No Sales call. Provisioned in under a minute.

Join the Waitlist Browse all workflows →