Print inactive users in Google Workspace

Jason Huang
Last update: May 16, 2023
7 Comments

The Problem

In large organizations, it's overwhelming for admins to find inactive users in the User List of Google Admin Console. These inactive users have not been logged in their Google accounts for a long period. It imposes a potential security risk to the organizational data if these accounts are not taken care of. The User interface does not support advanced filtering or sorting to find these inactive users, so it's fairly time consuming to find these stale accounts.

Inactive users whose last login time is a long time ago

The Solution

The following open source Google Apps Script can automate the process of printing inactive users in your domain.

Instructions

Open https://script.google.com.
Click New project.
Name the script project in the title
Copy and paste the following script to the script editor, overwriting existing function myFunction() {} code
Modify the inactiveDays variable to your organization settings. The default is to find any users whose last sign-in is over 30 days. You can set to a number like 60, 180, 365 etc.
Click Services in the left navigation panel
1. Select Admin SDK API
2. Click Add
Click in the toolbar
Click Run
It will ask for your permissions in the first run
After you grant the permission, the script shall run and print out the results in the Execution log.

Source code

/**
 * Find inactive users in the domain
 * Inactive users are those whose last login time is over the given
 * amount of days. Default: 30 days.
 * 
 * Usage:
 * 1. copy and paste this source code to your Apps Script Editor
 * 2. select the following function name `findInactiveAccounts`
 * 3. In the left panel, add AdminDirectory API to the Services. 
 * 4. click 'Run'.
 * 5. The inactive users will be printed in the 'Execution log'
 *
 * © 2021 xFanatical, Inc.
 * @license MIT
 * @version 1.0.0 proof of concept
 */
const inactiveDays = 30

function findInactiveAccounts() {
  let pageToken
  let page
  const now = new Date().getTime()
  do {
    page = AdminDirectory.Users.list({
      customer: 'my_customer',
      maxResults: 100,
      pageToken,
      fields: 'users(name/fullName,primaryEmail,lastLoginTime),nextPageToken',
    })
    if (page.users.length === 0) {
      Logger.log('no user found')
    }

    page.users.forEach((user) => {
      const lastLoginTime = new Date(user.lastLoginTime).getTime()
      const diffInDays = Math.floor((now - lastLoginTime) / (1000 * 86400))
      if (lastLoginTime !== 0 && diffInDays >= inactiveDays) {
        Logger.log(`user ${user.name.fullName} <${user.primaryEmail}> is inactive for ${diffInDays} days`)
      }
    })
    pageToken = page.nextPageToken
  } while (pageToken)
}

If you're interested in extending functions or automating your tasks as much as possible on Google Workspace, please check out our code-free workflow automation software Foresight. We also provide custom apps script development services to increase your productivity. Please don't hesitate to contact us. It's our passion and expertise to assist you on Google Workspace.

Foresight

This site uses Akismet to reduce spam. Learn how your comment data is processed.

7 Comments

Most Voted

Newest Oldest

Inline Feedbacks

View all comments

Unleash the power of automation and shape the future of intelligent digital workspace.

Products & Services

Company

Contact

xFanatical, Inc.

8780 19th St

Ste 458

Rancho Cucamonga, CA 91701

United States

Cookie	Duration	Description
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site’s analytics report. The cookies store information anonymously and assigns a randomly generated number to identify unique visitors. This cookie is installed the first time a visitor enters the website through a browser. When the visitor comes back to the website through the same browser, the cookie will consider them to be the same visitor. Only in the event that the visitor changes browser, will they be deemed to be a different visitor.
_gat_gtag-###	1 minute	This cookie is installed by Google Analytics. It is used to analyze visitor browsing habits, flow, source and other information.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected includes the number of visitors, the source where they have come from, and the pages visited in an anonymous form.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.

Cookie	Duration	Description
__Secure-1PAPISID	2 years	Used by for targeting purposes to build a profile of the website visitor's interests in order to show relevant & personalized Google advertising
__Secure-1PSID	2 years	Used by for targeting purposes to build a profile of the website visitor's interests in order to show relevant & personalized Google advertising.
__Secure-3PAPISID	2 years	Used by for targeting purposes to build a profile of the website visitor's interests in order to show relevant & personalized Google advertising.
__Secure-3PSID	2 years	Used by for targeting purposes to build a profile of the website visitor's interests in order to show relevant & personalized Google advertising.
_gcl_au	3 months	This cookie is set by Google Analytics to take information in advert clicks and store it in a 1st party cookie so that conversions can be attributed outside of the landing page.
1P_JAR	1 month	This cookie is installed by Google Ads. This cookie is used to collect site statistics and track conversion rates.
APISID	2 years	This cookie is used by Google to store user preferences and information while viewing Youtube videos on this site.
HSID	2 years	This cookie contains digitally signed and encrypted records of a user’s Google Account ID and most recent sign-in time. Google uses security cookies to authenticate users, prevent fraudulent use of login credentials, and protect user data from unauthorized parties.
LOGIN_INFO	2 years	This cookie is used by YouTube (Google) for storing user preferences and other unspecified purposes.
NID	6 months	NID cookie, set by Google, is used for advertising purposes; to limit the number of times the user sees an ad, to mute unwanted ads, and to measure the effectiveness of ads.
PREF	2 years	This cookie is used by YouTube (Google) for storing user preferences and other unspecified purposes.
SID	2 years	This cookie contains digitally signed and encrypted records of a user’s Google Account ID and most recent sign-in time. Google uses security cookies to authenticate users, prevent fraudulent use of login credentials, and protect user data from unauthorized parties.
SIDCC	1 year	This cookie carries out information about how the end user uses the website and any advertising that the end user may have seen before visiting the said website.
SSID	2 years	This cookie is used to save the user's preferences and other information.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	6 months	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	This cookie is used by YouTube to remember user input and associate a user’s actions. This cookie lasts for as long as the user keeps their browser open.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.