Skip to main content

Celonis Product Documentation

Implementing a user locking policy


The User locking policy feature was recently merged with the managing Users feature. The User locking policy menu option remains in the UI with a re-direct for now, however this will eventually be removed.

When monitoring both the number of users in your and their activity levels, you may notice that there are users who haven’t logged into for an extended period. By implementing a user locking policy, you can both lock and remove these inactive users automatically.


The user locking policy will not take effect on users who were unlocked within the previous three days. For example, if a user is locked out of your Celonis Platform and is then manually unlocked, the policy will skip these users for three days regardless of the number of days specified in the Lock users with days of inactivity bigger than setting below.

While locked, this user counts as an allocated seat and retains their user or team roles (though they can’t take advantage of them). Locked users can be unlocked at any time, returning their access to them.

To implement a user locking policy, click Admin & Settings - Users - User locking policy


You have the following options:

  • Lock users with days of inactivity bigger than: Indicates the number of days that the user must be inactive before they are locked. The minimum number of days is four.

  • Days to notify users before locking: The number of days prior to being locked that you want to send an automated email to users who are at risk of being locked out of your .

  • Remove locked users: When enabled, locked users are removed from your after the specified number of days. Removed users must be re-invited (or re-authenticated if you’re using an SSO) to regain access and will lose their previous permissions.

  • Manually locking and unlocking users: As an admin, you can also manually lock or unlock a user. For more information, see Managing existing users.