How To
ForgeRock Identity Cloud

How do I view active session details for a user in Identity Cloud?

Last updated Jan 17, 2023

The purpose of this article is to provide information on how to view a user's open session details in ForgeRock Identity Cloud.

1 reader recommends this article


You can view the session details of users who are currently logged into Identity Cloud by performing a session search using the user's profile ID. Session details include the current idle time, remaining idle time, and remaining session time.

Once the session details are displayed, you can end the session if required. Ending the session clears the user's single sign-on (SSO) sessions within the current realm, and revokes the session tokens.

You can also end all sessions for a user without viewing them first if preferred.

Viewing a user's session details

  1. In the Identity Cloud admin UI, go to Identities > Manage and search for the user whose session details you want to view.
  2. Click on the user's name to display the user details.
  3. Select Raw JSON and copy the profile ID value displayed in the “_id” field.
  4. Go to Native Consoles > Access Management > Sessions.
  5. Enter the profile ID (copied in Step 3) in the search field and press Return.

If the user has an active session, the details are displayed similar to this:

To end a user's session: 

  • Select the session and click Invalidate Selected. The user is logged out of Identity Cloud and all systems protected by it.

Ending all sessions for a user

  1. In the Identity Cloud admin UI, go to Identities > Manage and search for the user whose sessions you want to end.
  2. Click the ... menu next to the user's details and select End Sessions. This ends all application sessions and logs the user out.

See Also


Manage identities

Copyright and Trademarks Copyright © 2023 ForgeRock, all rights reserved.