Stale device objects
Identifies device objects that have not signed in for 90+ days.
How to fix it
Clean up inactive device objects regularly to keep the directory clean and avoid confusion around device compliance.
Required Microsoft Graph permissions
EntraAnalyzer needs the following read-only Graph permissions to evaluate this rule:
Device.Read.All
Further reading
Run this check on your tenant
EntraAnalyzer evaluates this rule automatically on every scan and emails you the results.
Get started — free first scan →