As an administrator of ArcGIS online for my organisation, one of my tasks is user account management i.e. creating new accounts for members who join our organisation and removing members who leave. Our policy is to have accounts created before a new joiner actually starts their position, so IT can help them setup their new PC including logging into ArcPRO desktop for the first time.
Recently, a new member of staff joined, I created their account about 4 days before their actual start date as per our normal policy, however it later transpired that the users account was blocked the moment it was created.
It transpired that although based in the EU, whenever new users are created on AGOL, their name and email address is bounced off a U.S. government’s "denied parties lists" - the account was blocked until ESRI inc verified the user was not whomever our new user resembled on this list.
However - we weren't aware of the block until the user actually tried to login, and because this is such a rare event (I've managed over 500 accounts at this point and this is the first time this has happened) we had no idea how to resolve, turns out, only way to get the block removed is to contact ESRI inc.
My idea is simple: please setup a notification alert for arcgis online administrators if an account is blocked due to the U.S. government’s "denied parties lists", this will allow administrators to contact ESRI inc immediately to have the account checked and verified.
We lost almost a week of productivity due to not being notified and stressed out a new member of staff - if ESRI bounce the users credentials off a list, surely some return must happen to apply a block to the account if a match is found - that could be a simple event trigger to issue an automated message to AGOL admins that the account is now blocked and they need to contact ESRI to have the block removed.
