PingOne

Viewing users

Use the Users page to view and manage all users in your organization.

Steps

  1. Go to Directory → Users and browse or search for the user you want to view.

    You can narrow your search to a particular population. Learn more in Searching for users.

  2. Click the user entry to open the user details panel.

Result

The user details panel shows specific information for the user.

User details panel
Profile

Shows name, user name, and other contact information for the user. You can also see when the user identity was created and updated.

Groups

Shows group membership for the user. Learn more in Groups.

Roles → Administrator Roles

Shows the PingOne administrator roles that are currently assigned to the user. Administrator roles are collections of permissions for managing access to resources in the PingOne admin console, such as organizations, environments, and identities. Learn more in Administrator Roles.

Roles → Application Roles

Shows the application roles that are currently assigned to the user. In PingOne environments that include the PingOne Authorize service, application roles help you manage access to the application resources developed by your organization’s engineering teams. Learn more in Application roles.

Services → Authentication

Shows details about authentication methods, as well as identity providers and linked accounts.

  • Status: Shows whether MFA is enabled for the user.

  • Methods and devices: Shows the authentication methods for the user, such as email, mobile, or SMS. You can see when an authentication method was paired, and remove or block a particular authentication method. If an end user has renamed an authentication method, it will appear here.

  • Authoritative identity provider: Shows the current identity provider for the user and the origin of the user. The latter includes the information from the LDAP gateway, such as user type and password authority, if the user was migrated through it.

  • Sessions: Shows current and recent sessions for the user. A session defines a set of user activity within PingOne applications. Learn more in Managing a user’s sessions.

  • Linked accounts: Shows any external accounts, such as Google or Apple, linked to the PingOne user account.

Services → Consent

Shows the most recent agreement to which the user has consented.

Services → ID verification

If you have set up ID verification, use this tab to enable ID verification for the current user, reset the verification status, or manually approve a user. Learn more in PingOne Verify.

Services → Sync status

If you have set up provisioning for the user, this tab shows details about syncing with external identity stores. Learn more in Provisioning.

The following list shows the possible states for each identity:

  • Healthy: The user account was successfully synced to the target identity store.

  • Partial sync: The user account exists in the target identity store, but the user attributes were not fully synced. Ensure that the Allow users to be updated option is selected in the provisioning connection.

  • Not synced: The user account does not exist in the target identity store. Ensure that the Allow users to be created option is selected in the provisioning connection.

  • Sync failure: The user account was not synced to the target identity store because of an error. Check the configuration of the provisioning connection.

    API

    Shows user information in a format that is easy for application developers to use.