|NOTE: To configure the session delegation parameters for users, see Section Session Delegation Tab.|
You can visualize delegations made by users but you cannot modify them.
Displays the list of users to whom the selected user has delegated his/her Windows session, the type of delegation (permanent or temporary) and the workstation it concerns.
Displays the list of users who have delegated their session to the selected user, the type of delegation (permanent or temporary) and the workstation it concerns.
The RFID tab allows you to assign, lock or unlock, send into a blacklist and delete, or display information on the RFID tokens of a user. For more details on how to manage tokens through this tab, see Section Managing RFID tokens.
The Events tab allows you to display all the events that are directly or indirectly linked to the selected object for a defined period (the last two days by default). This report contains both user actions and administration actions log entries.
If the selected object is a group of users, an organizational unit or a directory, the default events displayed are only related to the group, organization unit or directory, but the events related to its members are not available.
The Audit population area of the Events tab allows you explicitly mark the group, organization or directory for audit, so that audit events on members of the group, organizational unit or directory are also displayed.
The Events tab only appears if you have at least the following administration role:
|NOTE: For more information on administration roles, see Section Managing administrators.|
|NOTE: To display all the actions performed on this particular user, select the Include operations performed on this object (may be time consuming) check box.|
When the administrator disables a user account in the directory, the SSO data of the user is still associated with this account.
The One Identity Identity & Access Management software license is based on the number of active users, which are all the user accounts (enabled and disabled) with SSO data.
This section describes how to search for disabled accounts in the directory and delete the associated SSO data in order to reduce the number of active users.
|NOTE: To display the number of active users, click Help\About.|
The solution must be configured in Active Directory mode.