Back to OffboardingAvailable
Starter · Part of Offboarding
Webhook access revocation
Access-revocation tasks can fire a webhook to your downstream systems on a departure — with an SSRF guard and outcome tracking, not a fire-and-forget POST.
For the operator
Configure a revocation webhook per system once. On a departure, the scanner calls it and records whether it succeeded — so IT sees confirmed deprovisioning, not an assumption.
Business impact
Lingering access after departure is a top audit finding and a real breach vector. Executed, observable webhook revocation turns deprovisioning from a manual ticket into a tracked automation — defensible to a SOC 2 auditor.