Terminated Employee Checklist for IT

Scope & Purposes

What does IT do when an employee leaves the company?

For All Employees

1. Retrieve the employee’s keepass, if any, and make sure they are readable.
2. From Microsoft Admin Center:
   • Change the passwords of all of that employee’s accounts.
   • Block sign-in.
   • Check and make sure there are no recovery methods (personal emails, phone numbers, etc.) that can be used to recover the password.
   • Delegate email access to managers.
3. From Microsoft Exchange Admin Center:
   • Remove the user from all Distribution Lists.
4. From Google My Business:
   • Remove the user access from to all of our our business profiles, including Google Business, Yelp and Bing.
5. From BusinessMind (or any POS software we are using):
   • Remove the user. For BusinessMind, go to Admin > Manage BusinessMind Users > Manage BusinessMind Users.
6. From Intranet’s Lead Distributors Setup:
   • Remove the user from all the Distribution List. This software doesn’t allow you to delete the user, so…
7. Go through each of the following subscriptions that the employee has and cancel them:
   • Adobe Creative Cloud
   • Adobe Reader DC
   • Acrobat Pro
   • Shutterstock
   • Freepik
   • Any other subscription paid for by Leo Hamel.

For IT Personnel

1. From Sophos Central:
   • Remove the user from People > Manage Users & Groups to prevent access to our firewall.
   • In case their computer is going to be transferred to someone else:
     • Reset the device’s groups and policies under Firewall > Hosts & Services.
     • Reconfigure device to appropriate subnet under Network > DHCP.
2. On the firewall (https://access.leohamel.com:4444):
   • Disable or remove the account for the user:
     • Authentication > Users
     • Select the box next to the user(s)
     • Click the “Change Status” button OR the “Delete” button.
   • Disabling the user is usually preferred initially so the user can be turned back on if needed.
3. From Support System:
   • Remove the user to prevent access from our ticketing systems.
4. From Ubiquiti:
   • Remove the user to prevent access and changes to our wifi network.
5. From vcenter:
   • Disable or remove the user to prevent access to our internal servers.
6. Set reminder to update the quantity of licenses needed for VMWare Work Station.
7. From all our public-facing VMs, change the user passwords (for now, until I can clean up the VMs).
   • net1.leohamel.com
   • The list will be updated once I clean up the VMs.
8. Remove access from all our payment processors, for example: Clover, if any.
9. From all our websites, remove the user. Currently, we have the following websites:
   • leohamel.com
   • jewelrystoresd.com
   • leofitlabs.com
   • sdgemlab.com
   • finejewelrysandiego.com
10. Delete the user from Adobe Admin Console. Make sure to transfer appropriate content (if any) to another user.
11. Since we use one main [email protected] account for some web services, we will need to change their passwords. This includes the following, and anything that is in the IT Keepass:
    • Amazon
    • Bluehost
    • Best Buy
    • Staples
    • Dell