Who can use this feature?
Okta Admins
Available from your organization’s Okta Admin Dashboard
As an Okta Admin, you can trigger Okta Universal Logout for a specific user from the Okta Admin Dashboard. This action can be extended to Cerby, triggering Cerby Universal Logout, which revokes the user’s sessions and tokens in their Cerby-assigned apps and activates Cerby’s automated password rotation for those apps.
To trigger Cerby’s Universal Logout from Cerby, you must complete the following steps:
Log in to your organization's Okta Admin Console.
Select the People option under the Directory drop-down from the left navigation drawer. The People page is displayed.
Select the user whose session you want to terminate.
Click the More actions button. A drop-down menu is displayed.
Select the Clear User Sessions option. The Clear sessions and revoke access dialog box is displayed and confirms that all of the user’s sessions and tokens will be revoked for the apps assigned to them in Okta.
Select the Also include logout enabled apps and Okta API tokens checkbox, as shown in Figure 1.
Figure 1. Clear sessions and revoke access dialog boxIMPORTANT: You must select this option to extend Okta’s Universal Logout to Cerby.
Click the Clear and revoke button to trigger Okta’s Universal Logout and extend it to Cerby.
The user’s sessions and tokens are revoked not only for their assigned apps in Okta but also for their Cerby client apps, triggering automated password rotations for the accounts to which they have access.
Now you are done.