View and terminate sessions
If you have configured Identity Cloud to use server-side sessions[1], you can view and terminate users' sessions in the AM admin UI.
Refer to Manage sessions using REST for advanced functionality that is not available in the AM admin UI.
View sessions
-
In the AM admin UI, go to Realms > Realm Name.
-
Select Sessions.
-
The Sessions page appears with a single field in which to enter a username.
Identity Cloud uses generated UUIDs for usernames. To get a UUID:
-
In the Identity Cloud admin UI, go to Identities > Manage.
-
From the Realm Name - Users list, click the user for which you want to obtain the UUID.
-
Click Raw JSON from the left-hand menu, and copy the value for
_id
. For example,0c8a31fa-a763-4fca-9352-0c3cc84a2138
.
-
-
Paste the UUID in the Session page’s username field.
-
Click the entry in the drop-down list to search for the user’s sessions.
If the user has active server-side sessions, Identity Cloud retrieves the sessions for the user and displays them in a table:
Terminate sessions
To terminate a user’s server-side session:
-
Select the session you want to terminate.
-
Clicking the Invalidate Selected button.
After you terminate a user’s session, the user must reauthenticate to access resources protected by Identity Cloud.
Deleting a user does not remove a user’s server-side sessions. After deleting a user, use the preceding steps to check for any sessions for the user and invalidate them.