Adobe Advertising Cloud Remove User Access | OpsBlu Docs

Adobe Advertising Cloud Remove User Access

Checklist for revoking access to Adobe Advertising Cloud via Adobe Admin Console while preserving campaigns and assets.

Remove User Access

Follow this process when someone no longer needs access to Adobe Advertising Cloud.

What to revoke

  • Product Profiles: Remove all Adobe Advertising Cloud product profile assignments.
  • API Credentials: Revoke OAuth tokens, JWT credentials, and integration keys.
  • Cross-Product Access: Consider whether user's access to Adobe Analytics, Audience Manager, or Experience Platform should also be removed.
  • Asset Ownership: Transfer ownership of campaigns, creative assets, audiences, and saved reports before removal.

Deactivation Triggers

  • Offboarding an employee, contractor, or agency partner.
  • End of project or campaign period for temporary access.
  • Role transition to different Adobe product or department.
  • Security incident or policy violation requiring immediate access revocation.
  • Vendor contract termination or agency relationship ending.

Removal Steps

  1. Log in to Adobe Admin Console at adminconsole.adobe.com.
  2. Navigate to Users and search for the user to remove.
  3. Click on the user's name to open their profile.
  4. Document current access for audit trail:
    • Screenshot product profile assignments.
    • Note advertiser access scope.
    • Record any admin roles.
    • List API credentials if applicable.
  5. Remove all Adobe Advertising Cloud product profiles:
    • Click X next to each product profile assignment.
    • Or use Remove from Org to completely remove user from organization.
  6. Revoke API credentials:
    • Navigate to Adobe Developer Console (console.adobe.io).
    • Delete or deactivate OAuth and JWT credentials associated with user.
  7. Click Save to confirm removal.

Asset & Campaign Transfer

Before removing user access, transfer ownership to ensure continuity:

Campaigns

  1. In Adobe Advertising Cloud UI, identify campaigns owned by departing user.
  2. Reassign campaign ownership to active team member.
  3. Update campaign notifications and alerts to new owner's email.

Creative Assets

  1. Locate creative assets uploaded by user.
  2. Transfer ownership or ensure assets are accessible to team.
  3. Update asset metadata and tags as needed.

Audiences

  1. Review audience segments created by user in Audience Manager.
  2. Transfer ownership of custom audiences to continuing team member.
  3. Verify audience activation in campaigns will not be disrupted.

Saved Reports

  1. Identify scheduled reports created by user.
  2. Update report recipient lists to remove departing user.
  3. Transfer important report configurations to other team members.

Automated Rules & Scripts

  1. Review bid automation rules created by user.
  2. Update ownership or disable rules no longer needed.
  3. Transfer custom scripts or bulk management workflows to appropriate owner.

API & Integration Cleanup

  • OAuth Tokens: Revoke all OAuth access tokens in Adobe Developer Console.
  • JWT Credentials: Delete service account credentials and public key certificates.
  • Webhooks: Disable any webhooks configured with user's credentials.
  • Third-party Integrations: Update connections to marketing automation, BI tools, or data warehouses that used user's API credentials.
  • Scheduled Jobs: Review and reassign any automated data exports or bulk operations.

Cross-Product Considerations

Consider whether user's access should also be removed from:

  • Adobe Analytics: Remove from report suites and workspace access.
  • Adobe Audience Manager: Revoke data source and segment access.
  • Adobe Experience Platform: Remove from sandboxes and datastream access.
  • Adobe Admin Console: Completely remove from organization if they no longer need any Adobe products.

After Removal

  • Verify user no longer appears in Adobe Advertising Cloud user list.
  • Confirm user cannot log in to advertising.adobe.com (test with user or request confirmation).
  • Check that API credentials are fully revoked and cannot authenticate.
  • Monitor for any failed login attempts or access errors from removed user.
  • Update team distribution lists and notification settings to remove user's email.
  • Document the removal in your access audit log:
    • User name and email.
    • Removal date and approver.
    • Product profiles removed.
    • Assets transferred and new owners.
    • Reason for removal.
  • Retain screenshots and documentation for compliance and audit purposes (typically 90 days minimum).

Emergency Removal

For immediate security-related removals:

  1. Use Remove from Org in Admin Console for instant access revocation across all products.
  2. Immediately revoke all API credentials in Adobe Developer Console.
  3. Change passwords for any shared service accounts.
  4. Review recent user activity in Adobe Advertising Cloud audit logs.
  5. Check for any unusual campaign changes, budget modifications, or data exports.
  6. Notify security team and document incident details.
  7. Follow up with full asset transfer and cleanup within 24 hours.

Compliance & Audit

  • Maintain removal records for minimum regulatory retention period (90 days to 7 years depending on industry).
  • Include in quarterly access review reports.
  • Document transfer of responsibilities and asset ownership.
  • Retain proof of API credential revocation.
  • Keep screenshots of before/after access states for audit trail.
Nach oben