Edit, delete, unlock and disable users

You can edit the user profile of users, as follows:

●       Only users with a Super Administrator role can change the role assigned to another account.

●       Super Administrators can only be deleted by other Super Administrators.

●       Super administrators cannot be disabled.

●       Administrators cannot change the Language Preference selected for their Profile information on the Administrator Portal. This feature is disabled. They can, however, modify the Language Preference of end users from this page.

●       You cannot change the State (either Active or Inactive) of an AD-synced user from your Identity as a Service account. The state of an AD-synced user must be changed from their corporate Active Directory record.

●       A Unique User ID attribute is added once a user has been added to Identity as a Service. This attribute is used as SAML assertions to identity the users. You cannot modify this attribute.

Edit a user profile

1.      Click > Members > Users. The Users List page appears.

2.      Click the User ID for the profile you want to edit. The User Profile page appears.

3.      Make the required changes and click Save.

When you delete a user any assigned hardware tokens to be reassigned the list of unassigned tokens. Administrators cannot delete themselves from their account. To delete several users at once, see Delete users in bulk.

Delete users

1.      Click > Members > Users. The Users List page appears.

2.      For locally managed users, click for the user you want to delete.

3.      Click Delete on the Delete User prompt.

Users can lock their account by failing an authentication attempt too many times (see Lockout Count on the General Settings page).

The User List page shows users with locked authenticators.

Unlock a user

1.      Click > Members > Users. The Users List page appears.

A appears beside users with locked authenticators.

2.      Click Unlock in the Actions column. The Unlock User dialog box appears showing a list of locked authenticators.

3.      Click Confirm on the Unlock User prompt to unlock the locked authenticators.

The disappears and all the user's authenticators are now unlocked.

If the user inactivity settings have been enabled (see Manage General settings) and a user has not been active in their account within the inactivity period (for example, they have been away on leave), the user is locked out of their account due to inactivity. To allow the user access to their account, administrators can allow users one-time access within a grace period to reactivate their account.

The User List page shows users with locked authenticators.

Unlock an inactive user

1.      Click > Members > Users. The Users List page appears.

2.      Select the user that needs to be reactivated. The User Profile page appears.

3.      Select Check here to update the time the user is temporarily enabled to allow the user to reactivate their account.

4.      Click Save.

If you want to prevent a user from logging in to their Identity as a Service account, you can disable the user.

Disable a user

1.      Click > Members > Users. The Users List page appears.

2.      Click next to the user you want to disable. The Disable User dialog box appears.

3.      Click Confirm.

4.      To enable a user, click . The Enable User dialog box appears.

5.      Click Confirm.