After identifying a potentially compromised user account, you can sign the user out of all active application and browser sessions.
This task is supported by the following services:
-
Active Directory (on-premises)
-
Google Cloud Identity
-
Microsoft Entra ID
-
Okta
-
OpenLDAP
This task requires a complete account identifier that includes both the user name
and the identity provider domain. The action is not available for values that contain
only a user name without a domain because TrendAI Vision One™ cannot reliably identify the target account.
Procedure
- After identifying the potentially compromised user account, select Force Sign Out from the context or response menu.
- Specify a description for the task.
- Click Create.
- Monitor the task status.
- Go to .
- Locate the task using the Search field or by selecting Force Sign Out from the Action list.
- View the task status.
-
In progress (
): TrendAI Vision One™ sent the command
and is waiting for a response. -
Successful (
): The command was successfully
executed. -
Partially successful (
): The task was unsuccessful on one or more IAM service. -
Unsuccessful (
): The task was unsuccessful on all connected IAM services.
-
