Interested if others are doing this cleanup and if so how they are doing it.
We would like to programatically clean up Systems Manager of devices which have been inactive for over 30 days. As we are a predominantly a BYOD environment (80k+ devices), users are free to remove management (they lose all enterprise apps and data, certs etc. if they do so) and there is also a churn of devices as people replace them.
We don't want to keep redundant devices in the system long term and want to keep tight on licensing.
For compliance and support reasons we would want to extract the metadata of the devices we archive and store it in another system for a period of time.
Meraki inbuilt policies only allow you to tag a device 'inactive' after a maximum of 7 days. This isn't sufficient as that catches people on holiday so we can't rely on Meraki identifying them correctly.
There are no APIs I'm aware of that would allow me to selectively pull the data of devices that haven't checked in for 30+ days - We'd have to pull all the device data and then filter it which isn't efficient.
Any thoughts on how best to achieve this or even sharing how you clean up appreciated.