Documentation and Guides

Manage Identities

Find, edit, and delete existing Apono identities

After creating identities, you can manage your identity context information. The Apono UI enables you to find, edit, delete, and manage identities.

Find an identity

You can search for users and groups to view their related information.

Find a user

Follow these steps to locate a user in the Apono UI:

  1. From the left navigation, click Identities > Users. The Users tab appears with a list of all existing and synced users.

The Users tab displays context information related to each user:

  • Name

  • Email address

  • Role (Admin, Grantee)

  • Attributes synced from the IdP

  • Status (Active, Disabled) NOTE: The user status is derived from the IdP. Users who are Disabled in the IdP cannot request or receive access with Apono.

This information is intended to help you quickly identify specific users.

  1. In the search bar, enter the name or email of a user. All matching users appear.

  2. (Optional) Apply one or more filters.

Apono Role

Role assigned to the user

Follow this step to apply the filter:

  1. From the Apono Role dropdown menu, select Admin or Grantee. NOTE: For more information on Apono roles, see Edit a user.

Group

Group associated with the user

Follow this step to apply the filter:

  1. From the Group dropdown menu, select one or more groups.

More Filters

Attributes associated with the user

Follow this step to apply the filter:

  1. From the More Filters dropdown menu, select one or more attributes.

After searching and applying filters, only users with matching criteria appear on the Users tab.

Find a group

Follow these steps to locate a group in the Apono UI:

  1. From the left navigation, click Identities > Groups. The Groups tab appears with a list of all existing and synced groups.

The Groups tab displays context information related to each group:

  • Name

  • Source (Apono, IdP service)

This information is intended to help you quickly identify specific groups.

  1. In the search bar, enter the name of a group. All matching groups appear.

  2. (Optional) Click View Members. The View Group menu appears with a list of all users associated with the group.

Edit an identity

You can edit both user and group identities.

Edit a user

You can edit roles for both Apono-created and IdP-created users in the Apono UI.

Follow these steps to edit a user:

  1. From the left navigation, click your user icon > Administration. The Profile popup window appears.

  2. From the left navigation of the popup window, click Users. The Users window appears with a list of all Apono-created users.

  3. In the row of your desired user, click ⠇> Edit roles. The Edit Roles menu appears.

  4. From the dropdown menu, select a role for the user to assume in Apono:

RoleDescription

Admin

Has access to resources by default and grants access to resources

Grantee

Requests and receives access to resources

  1. Click Update. The Edit Roles menu closes, and the user role updates.

  2. In the top right corner of the page, click X. The Profile popup closes.

Edit a group

You can only edit groups created in the Apono UI.

You cannot edit groups that are synced from your IdP. To modify these groups, you must edit them through your IdP service.

Follow these steps to edit an Apono-created group:

  1. Find a group.

  2. In the row of the group, in the row of the user, click ⠇> Edit. The Edit Group menu appears.

  3. Enter new group fields (steps 2-3).

  4. Click Update Group. A green notification appears to signal a successful update.

Delete an identity

You can delete both user and group identities.

Delete a user

Deleting a user irreversibly removes the identity from the Apono system, including from any associated groups and access flows.

You can only delete users created in the Apono UI. You cannot delete users that are synced from your IdP. To remove these users, you must delete them through your IdP service.

Follow these steps to delete an Apono-created user:

  1. From the left navigation, click your user icon > Administration. The Profile popup window appears.

  2. From the left navigation of the popup window, click Users. The Users window appears with a list of all Apono-created users.

  3. In the row of your desired user, click ⠇> Delete User. The Delete User prompt appears.

  4. Click Delete. The user is deleted from Apono.

  5. In the top right corner of the page, click X. The Profile window closes.

Delete a group

Deleting a group irreversibly removes the identity from the Apono system, including from any associated access flows.

You can only delete groups created in the Apono UI.

You cannot delete groups that are synced from your IdP. To remove these groups, you must delete them through your IdP service.

Follow these steps to delete an Apono-created group:

  1. Find a group.

  2. In the row of the group, click ⠇> Delete. The deletion prompt appears.

  3. Click Yes. The group is deleted from Apono.

Additional user actions

In addition to finding, editing, or deleting users, the Apono UI also allows you to perform other tasks to manage users.

Disable a user

Disabling a user prevents the user from requesting or receiving access to any resources controlled by Apono.

You can only disable users created in the Apono UI.

You cannot disable users that are synced from your IdP. You must disable these users through your IdP service.

Follow these steps to disable an Apono-created user:

  1. From the left navigation, click your user icon > Administration. The Profile popup window appears.

  2. From the left navigation of the popup window, click Users. The Users window appears with a list of all Apono-created users.

  3. In the row of your desired user, click ⠇> Disable User. The Disable User prompt appears.

  4. Click Proceed. The user is disabled.

  5. In the top right corner of the page, click X. The Profile window closes.

Resend a user invitation email

Apono invites new users to the system via email. If an invitation expires before the user has accepted it, you will need to resend the invitation email.

Follow these steps to resend an invitation email:

  1. From the left navigation, click your user icon > Administration. The Profile popup window appears.

  2. From the left navigation of the popup window, click Users. The Users window appears with a list of all Apono-created users.

  3. In the row of your desired user, click ⠇> Resend invitation email. A new invitation email is sent.

  4. In the top right corner of the page, click X. The Profile window closes.

Log out a user session

Apono allows admins to manually log out user sessions. This enhances security by ensuring that a user does not inadvertently remain logged in beyond a safe duration.

Follow these steps to log out a user session:

  1. From the left navigation, click your user icon > Administration. The Profile popup window appears.

  2. From the left navigation of the popup window, click Users. The Users window appears with a list of all Apono-created users.

  3. In the row of your desired user, click ⠇> Log out user sessions. The user is logged out.

  4. In the top right corner of the page, click X. The Profile window closes.

\

PreviousCreate IdentitiesNextSlack

Last updated