Access review digest
Quarterly access review — flag dormant entitlements, orphan accounts, and route deprovisioning to system owners.
Eluu — access-review-digest
Shown in preview 
Runtime ~6 min per run
Tokens ~22K per run
Owner an IT colleague
Works with
Pick whichever tool your team already uses.
- Messaging Slack
Teams - Spreadsheet Google Sheets
Excel - Docs Notion
Google Docs 
Confluence
What it does
Access reviews happen quarterly because they’re painful — IT spends days exporting per-system entitlements, comparing against HRIS, and chasing system owners. This recipe pulls every tracked entitlement, flags dormant / orphan / mismatched access, and routes findings to system owners with a tracking sheet.
How it works
- Pull entitlements. Every tracked system’s entitlements are pulled with last-login per user, current employee status, and HRIS cross-reference.
- Review + flag. Entitlements with no log-in in 90+ days, orphan accounts (employee left), and role mismatches (admin role for IC) all get flagged with a risk score.
- Route. Each system owner gets DM’d their flagged entitlements; digest summary posts to #it-access; a tracking sheet of decisions gets built.
Setup
- Connect a spreadsheet destination (Google Sheets or Excel) for the entitlements catalog.
- Connect a docs destination (Notion, Google Docs, or Confluence) for the audit report.
- Connect a messaging channel (Slack or Teams).
Variations
- Run monthly for high-sensitivity systems instead of quarterly.
- Auto-create deprovision tickets in the IT helpdesk for clear cases.
- Add a privileged-access certification flow for admin-tier accounts.
