# Manage Identities After [creating identities](https://docs.apono.io/docs/user-administration/create-identities), you can manage your identity context information. The Apono UI enables you to find, edit, delete, and manage identities. *** ### Find an identity You can search for [users](#find-a-user) and [groups](#find-a-group) to view their related information.

Identities page

#### Find a user Follow these steps to locate a user in the Apono UI: 1. From the left navigation, click **Identities > Users**. The **Users** tab appears with a list of all existing and synced users. {% hint style="info" %} The **Users** tab displays context information related to each user: * Name * Email address * Role (Admin, Grantee) * Attributes synced from the IdP * Status (Active, Disabled)\ \ **NOTE**: The user status is derived from the IdP. Users who are **Disabled** in the IdP cannot request or receive access with Apono. This information is intended to help you quickly identify specific users. {% endhint %} 2. In the search bar, enter the name or email of a user. All matching users appear. 3. (Optional) Apply one or more filters.
Apono Role

Role assigned to the user

Follow this step to apply the filter:

  1. From the Apono Role dropdown menu, select Admin or Grantee.

    NOTE: For more information on Apono roles, see Edit a user.
Group

Group associated with the user

Follow this step to apply the filter:

  1. From the Group dropdown menu, select one or more groups.
More Filters

Attributes associated with the user

Follow this step to apply the filter:

  1. From the More Filters dropdown menu, select one or more attributes.
After searching and applying filters, only users with matching criteria appear on the **Users** tab. #### Find a group Follow these steps to locate a group in the Apono UI: 1. From the left navigation, click **Identities > Groups**. The **Groups** tab appears with a list of all existing and synced groups. {% hint style="info" %} The **Groups** tab displays context information related to each group: * Name * Source (Apono, IdP service) This information is intended to help you quickly identify specific groups. {% endhint %} 2. In the search bar, enter the name of a group. All matching groups appear. 3. (Optional) Click **View Members**. The **View Group** menu appears with a list of all users associated with the group. *** ### Edit an identity You can edit both [user](#edit-a-user) and [group](#edit-a-group) identities. #### Edit a user

Editing a user

{% hint style="info" %} You can edit roles for **both** Apono-created and IdP-created users in the Apono UI. {% endhint %} Follow these steps to edit a user: 1. From the left navigation, click your user icon > **Administration**. The **Profile** popup window appears. 2. From the left navigation of the popup window, click **Users**. The **Users** window appears with a list of all Apono-created users. 3. In the row of your desired user, click ⠇> **Edit roles**. The **Edit Roles** menu appears. 4. From the dropdown menu, select a role for the user to assume in Apono:
RoleDescription
AdminHas access to resources by default and grants access to resources
GranteeRequests and receives access to resources
5. Click **Update**. The **Edit Roles** menu closes, and the user role updates. 6. In the top right corner of the page, click **X**. The **Profile** popup closes. #### Edit a group

Editing a group

{% hint style="info" %} You can **only** edit groups created in the Apono UI. You **cannot** edit groups that are synced from your IdP. To modify these groups, you must edit them through your IdP service. {% endhint %} Follow these steps to edit an Apono-created group: 1. [Find a group](#find-a-group). 2. In the row of the group, in the row of the user, click ⠇> **Edit**. The **Edit Group** menu appears. 3. [Enter new group fields](https://docs.apono.io/docs/create-identities#create-a-group) (steps **2-3**). 4. Click **Update Group**. A green notification appears to signal a successful update. *** ### Delete an identity You can delete both [user](#delete-a-user) and [group](#delete-a-group) identities. #### Delete a user {% hint style="danger" %} Deleting a user irreversibly removes the identity from the Apono system, including from any associated groups and access flows. {% endhint %}

Deleting a user

{% hint style="info" %} You can **only** delete users created in the Apono UI. You **cannot** delete users that are synced from your IdP. To remove these users, you must delete them through your IdP service. {% endhint %} Follow these steps to delete an Apono-created user: 1. From the left navigation, click your user icon > **Administration**. The **Profile** popup window appears. 2. From the left navigation of the popup window, click **Users**. The **Users** window appears with a list of all Apono-created users. 3. In the row of your desired user, click ⠇> **Delete User**. The **Delete User** prompt appears. 4. Click **Delete**. The user is deleted from Apono. 5. In the top right corner of the page, click **X**. The **Profile** window closes. #### Delete a group {% hint style="danger" %} Deleting a group irreversibly removes the identity from the Apono system, including from any associated access flows. {% endhint %}

Deleting a group

{% hint style="info" %} You can **only** delete groups created in the Apono UI. You **cannot** delete groups that are synced from your IdP. To remove these groups, you must delete them through your IdP service. {% endhint %} Follow these steps to delete an Apono-created group: 1. [Find a group](#find-a-group). 2. In the row of the group, click ⠇> **Delete**. The deletion prompt appears. 3. Click **Yes**. The group is deleted from Apono. *** ### Additional user actions In addition to finding, editing, or deleting users, the Apono UI also allows you to perform other tasks to manage users. #### Disable a user Disabling a user prevents the user from requesting or receiving access to any resources controlled by Apono. {% hint style="info" %} You can **only** disable users created in the Apono UI. You **cannot** disable users that are synced from your IdP. You must disable these users through your IdP service. {% endhint %} Follow these steps to disable an Apono-created user: 1. From the left navigation, click your user icon > **Administration**. The **Profile** popup window appears. 2. From the left navigation of the popup window, click **Users**. The **Users** window appears with a list of all Apono-created users. 3. In the row of your desired user, click ⠇> **Disable User**. The **Disable User** prompt appears. 4. Click **Proceed**. The user is disabled. 5. In the top right corner of the page, click **X**. The **Profile** window closes. #### Resend a user invitation email Apono invites new users to the system via email. If an invitation expires before the user has accepted it, you will need to resend the invitation email. Follow these steps to resend an invitation email: 1. From the left navigation, click your user icon > **Administration**. The **Profile** popup window appears. 2. From the left navigation of the popup window, click **Users**. The **Users** window appears with a list of all Apono-created users. 3. In the row of your desired user, click ⠇> **Resend invitation email**. A new invitation email is sent. 4. In the top right corner of the page, click **X**. The **Profile** window closes. #### Log out a user session Apono allows admins to manually log out user sessions. This enhances security by ensuring that a user does not inadvertently remain logged in beyond a safe duration. Follow these steps to log out a user session: 1. From the left navigation, click your user icon > **Administration**. The **Profile** popup window appears. 2. From the left navigation of the popup window, click **Users**. The **Users** window appears with a list of all Apono-created users. 3. In the row of your desired user, click ⠇> **Log out user sessions**. The user is logged out. 4. In the top right corner of the page, click **X**. The **Profile** window closes.