View and terminate sessions (UI)
If you have configured PingOne Advanced Identity Cloud to use server-side sessions[1], you can view and terminate users' sessions under Native Consoles > Access Management.
For advanced functionality that’s not available in the UI, refer to Manage sessions (REST API).
View sessions
-
Under Native Consoles > Access Management, go to Realms > Realm Name.
-
Select Sessions.
-
The Sessions page appears with a single field in which to enter a username.
PingOne Advanced Identity Cloud uses generated UUIDs for usernames. To get a UUID:
-
In the Advanced Identity Cloud admin UI, go to Identities > Manage.
-
From the Realm Name - Users list, click the user for which you want to obtain the UUID.
-
Click Raw JSON from the left-hand menu, and copy the value for
_id
. For example,0c8a31fa-a763-4fca-9352-0c3cc84a2138
.
-
-
Paste the UUID in the Session page’s username field.
-
Click the entry in the drop-down list to search for the user’s sessions.
If the user has active server-side sessions, PingOne Advanced Identity Cloud retrieves the sessions for the user and displays them in a table:
Terminate sessions
To terminate a user’s server-side session:
-
Select the session you want to terminate.
-
Clicking the Invalidate Selected button.
After you terminate a user’s session, the user must reauthenticate to access resources protected by PingOne Advanced Identity Cloud.
Deleting a user doesn’t remove a user’s server-side sessions. After deleting a user, use the preceding steps to check for any sessions for the user and invalidate them.