PingOne Advanced Identity Cloud

View and terminate sessions (UI)

If you have configured PingOne Advanced Identity Cloud to use server-side authenticated sessions, you can view and terminate users' sessions under Native Consoles > Access Management.

Learn about advanced functionality that’s not available in the UI in Manage sessions over REST.

View authenticated sessions

  1. Under Native Consoles > Access Management, go to Realms > Realm Name.

  2. Select Sessions.

  3. The Sessions page appears with a single field in which to enter a username.

    PingOne Advanced Identity Cloud uses generated UUIDs for usernames. To get a UUID:

    1. In the Advanced Identity Cloud admin UI, go to Identities > Manage.

    2. From the Realm Name - Users list, click the user for which you want to obtain the UUID.

    3. Click Raw JSON from the left-hand menu, and copy the value for _id. For example, 0c8a31fa-a763-4fca-9352-0c3cc84a2138.

  4. Paste the UUID in the Session page’s username field.

  5. Click the entry in the drop-down list to search for the user’s authenticated sessions.

    If the user has active server-side sessions, PingOne Advanced Identity Cloud retrieves the authenticated sessions for the user and displays them in a table:

    An administrator can view and invalidate server-side sessions.

Terminate authenticated sessions

To terminate a user’s server-side authenticated session:

  1. View the user’s authenticated sessions.

  2. Select the authenticated session you want to terminate.

  3. Click the Invalidate Selected button.

After you terminate a user’s session, the user must reauthenticate to access resources protected by PingOne Advanced Identity Cloud.

Deleting a user doesn’t remove a user’s server-side authenticated sessions. After deleting a user, use the preceding steps to check for any authenticated sessions for the user and invalidate them.