Skip to content

Managing User Accounts

After you’ve aggregated users' source accounts from a supported source, you can view and manage these accounts in IdentityNow.

IdentityNow tracks the status of each user's accounts. You can view and edit these statuses by going to Admin > Identity Management > Identities, selecting the relevant identity, and going to their Accounts tab.

An account can have the following statuses:

Status Definition
Enabled The account is enabled and can be accessed by the user.
Pending The account is being updated. This status typically lasts only a few seconds
Disabled The account has been disabled, and the user can't access it. This may occur when an admin disables the user’s account or when the user's lifecycle state changes.
Locked The user's account has been locked. For example, someone may have entered an incorrect password for the account too many times.

Disabling a User Account

If you are a Helpdesk admin or an administrator, you might need to disable a user's account on a source. For example, if a user reports suspicious activity on that account, you can disable it temporarily while investigating the problem.

Note

This disables the user's account on the source and is different from disabling the user's access to IdentityNow.

  1. Go to Admin > Identity Management > Identities.

  2. Select the name of the user you want to disable.

  3. Select the Accounts tab to display the user’s accounts.

  4. Find the account you want to disable. Select Actions > Disable Account.

  5. In the confirmation window, select Disable.

Unlocking User Accounts

If you are a Helpdesk admin or an administrator and a user has been locked out of a source account, you can unlock them from IdentityNow. This option is available for accounts that have been loaded into IdentityNow from a supported source that allows unlocking accounts.

Note

You may need to aggregate the account first to ensure that the account status in IdentityNow is accurate.

  1. Go to Admin > Identity Management > Identities.
  2. Select the name of the user whose account you want to unlock.
  3. Select the Accounts tab to display the user’s accounts.
  4. Find the account you want to unlock. Select Actions > Unlock Account.
  5. In the confirmation window, select Unlock.

Removing User Accounts

You may need to remove an account from IdentityNow to fix data on the source. For example, if a user's email address was misspelled on the source, their account may correlate to another user's IdentityNow account. You can remove the account from that user to fix the misspelled email address and aggregate the account correctly. This removes the account from IdentityNow, not from the source system itself.

Note

If you remove an account from a user and that account is on an authoritative source, the user may move to a different identity profile or disappear from the list of identities.

To remove a source account:

  1. Go to Admin > Identity Management > Identities.
  2. Select the identity you want to edit.
  3. Select the Accounts tab to display the user’s accounts.
  4. Find the account you want to remove. Select Actions > Remove Account.
  5. In the confirmation window, select Remove to remove the account.

The account is removed from IdentityNow and will be added again during your next full aggregation.

Note

If your source is configured for delta aggregation, you should disable it if you want to reaggregate the account.