Non-Employee Lifecycle
Contractors, partners, vendors, and other non-employees need governed identities too — usually with a sponsor, an expiry date, and tighter review. nexusID manages their full lifecycle separately from HR-driven employees.
Admin console: /admin/non-employees
Concepts
- Non-employee profile — an identity for a person not in the HR system, with a sponsor (the accountable internal owner) and a scheduled end date.
- Sponsor — an employee responsible for the non-employee's access and renewals.
- Expiry & deprovisioning — when the end date passes, access is automatically removed (a scheduler runs the leaver path), so non-employee access never lingers.
How it works
A non-employee profile is created with a sponsor and an end date. Scheduled jobs evaluate profiles nearing expiry (notifying the sponsor to renew) and deprovision access at end-of-life. Non-employees are first-class subjects for access reviews and SoD, so their access is certified like anyone else's.
Typical setup
/admin/non-employees→ New → capture the person, sponsor, and end date.- Grant the access packages / roles they need.
- Let the scheduler handle renewal reminders and expiry-driven deprovisioning.
Related
- Approval Chains — gate non-employee access requests.
- Access Reviews — recertify non-employee access on a tighter cadence.