Views:

After identifying a potentially compromised user account, you can sign the user out of all active application and browser sessions.

This task is supported by the following services:
  • Microsoft Entra ID
  • Okta

Procedure

  1. After identifying the potentially compromised user account, access the context or response menu and click Force Sign Out.
    The Force Sign Out screen appears.
  2. (Optional) Specify a description for the task.
  3. Click Create.
  4. Monitor the task status.
    1. Open Response Management.
    2. (Optional) Locate the task using the Search field or by selecting Force Password Reset from the Action drop-down list.
    3. View the task status.
      • In progress (in_progress=GUID-A55897DB-3DEA-4F5C-B7F9-70B3D7FB9EDE=1=en-us=Low.jpg): Trend Vision One sent the command and is waiting for a response.
      • Successful (successful=GUID-1E31AD86-DE2E-48B5-85F7-7C78A3E8BB11=1=en-us=Low.jpg): The command was successfully executed.
      • Partially successful (partially_successful_icon=GUID-20230103030733.jpg): The task was unsuccessful on one or more IAM service
      • Unsuccessful (error=5cc21722-7ceb-480c-b9c2-a47d420cf1cc.jpg): The task was unsuccessful on all connected IAM services