Entrust Identity as a Service™ Administrator Help
Click here to see this page in full context

Report errors or omissions

  1. Home >
  2. Manage applications >
  3. Integrate OIDC and OAuth Cloud applications >
  4. Manage OIDC and OAuth tokens >
  5. Revoke OIDC and OAuth tokens

 

Revoke OIDC and OAuth tokens

You can revoke tokens. For example, you may want to revoke tokens if a user is an unauthorized user of the resource or a user has left your organization.

Note: Identity as a Service automatically revokes all the user’s tokens if a user is a disabled, changes their userid, their password changes.

 

When tokens are revoked, you will no longer be able to obtain the following:

Userinfo data when presenting an OIDC access token for it.

A new OAuth access token when presenting a refresh token for it.

Note: When tokens are revoked, you will no longer be able to obtain Userinfo data when presenting an OIDC access token for it, and you will no longer be able to obtain a new OAuth access token when presenting a refresh token for it. The client application will require the user to re-authenticate and issue a new access token on behalf of the user in this case.

Use the following procedures, as required:

Revoke an individual tokenRevoke an individual token

Click > Members > Users. The Users List page appears.

Click the name of the user. The User Details  page appears.

Click the OIDC and OAuth Tokens tab. The

Click next to the token you want to revoke. The Revoke Tokens dialog box appears.

Click Revoke.

Revoke all tokens for a userRevoke all tokens for a user

Click > Members > Users. The Users List page appears.

Click the name of the user. The User Details  page appears.

Under Actions, click next for the user whose tokens you want to revoke. The Revoke Tokens dialog box appears.

Click Revoke.

Revoke all tokens issued to an applicationRevoke all tokens issued to an application

Click > Security > Applications. The Applications List page appears.

Under OpenID Connect and OAuth Cloud Integrations, do one of the following:

Under Actions, click . The Revoke Tokens dialog box appears.

-or-

Under Actions, click and select Revoke All Tokens. The Revoke Tokens dialog box appears.

Click Revoke.

Revoke all tokens issued to an OAuth resource serverRevoke all tokens issued to an OAuth resource server

Click > Security > Authorization > APIs/URLs. The APIs/URLs List page appears.

Under Actions, click next to the resource server. The Revoke Tokens dialog box appears.