For some reason, we don’t want to automatically block the Azure AD login and email from offboarded employees. Is there a way to avoid this?
Page 1 / 1
Hi
Welcome to the Personio Community, we are thrilled to see you here 
I’ve checked with my colleagues and they have shared that, currently, if you use the Azure AD integration, there is no currently way of avoiding this altogether. The deprovisioning workflow is triggered once an employee profile is set to inactive and/or the Termination date passes.You can manually enable the user in Azure AD again, but because the profile would still be linked to the Personio one, it would just get deactivated again with the next deprovisioning workflow. What you can do is:
- Once the Personio profile is set to Inactive and the Azure AD profile was deactivated, you need to delete the employee ID in the Azure AD profile. That way, the sync is broken.
- You can then re-activate/enable the account in Azure AD.
That way, the profile in Personio is Inactive, but the Azure AD profile is still enabled.
I hope this helps Thomas! Please let me know if you have any specific question related to it and I can check it out for you! 
I wish you a lovely weekend! 
Best,
Zulema
Your reply
Join the Personio Voyager Community!
If you are a Personio customer please use the same email address for registration as in your Personio account. By doing so we can help you faster if we might need to check something in your account. Do you already have an account? > Login
! Your public username cannot contain any personal information such as email or other private information! You can't change your username after registration.
Welcome to the Personio Voyager Community!
This is our service and networking community for all Personio users and HR Professionals. If you have not registered yet, please select "create an account"
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.