Microsoft Entra ID · Identity Governance
Lifecycle Workflows Administrator
Create and manage all aspects of workflows and tasks associated with Lifecycle Workflows for joiner, mover, and leaver scenarios.
Scope: Full administrative control over Lifecycle Workflows for identity lifecycle automation
Permissions
- Create and manage lifecycle workflows
- Create and manage workflow tasks
- Check execution of scheduled workflows
- Launch on-demand workflow runs
- Inspect workflow execution logs
- Configure workflow triggers and conditions
Common use cases
- Employee onboarding automation
- Department transfer workflows
- Employee offboarding automation
- Contractor lifecycle management
- Pre-hire provisioning
- Post-termination cleanup
Best practices
- Start with simple workflows
- Test in non-production first
- Monitor workflow execution logs
- Coordinate with HR systems
- Document workflow logic
- Use custom task extensions carefully
Security considerations
- Workflows can provision/deprovision access
- Leaver workflows are security-critical
- Monitor for workflow failures
- Audit workflow changes
- Consider separation from HR data access