Skip to main content

Enabling and disabling user profiles

User profiles can be:

  • Locked/Unlocked - Lock operations happen automatically after too many failed authentication attempts. Profiles can be unlocked by help desk users.

  • Disabled/Enabled - Disabling a profile completely disables users’ access to Bravura Security Fabric , and terminates any single sign-on sessions active for that user. For example, you could disable a profile to revoke access for an employee whose contract is being terminated. Disabled profiles can be enabled if required.

Enabling or disabling a user’s profile does not affect their accounts.

Disabling a user automatically revokes access to any privileged accounts that they have checked out.

Help desk users can enable/disable or unlock a user’s profile using the Profile status tab of the Help users (IDA) module. Only users with accounts on target systems can be managed in the Help users (IDA) module. To disable a user with console-only access you must use the Manage the system (PSA) module.

Product administrators can unlock user profiles using:

  • The userunlock utility. This utility will not enable a user that has been explicitly disabled.

  • Manage the system > Security > Access to product features > Individual administrators menu if the user is also a product administrator .

Note

Disabled and locked-out users cannot access any Bravura Security Fabric functionality, regardless of whether they were disabled using the Help users (IDA) module, Manage the system (PSA) module, or locked-out after too many failed authentication attempts.

When Bravura Identity is licensed, you can also include enable/disable operations in pre-defined requests .

See also

  • Authentication policy options to learn how to set the maximum number of allowed authentication failures before a user is automatically disabled.

  • Automatically unlocking users to learn how to automatically enable users that have been locked out of Bravura Security Fabric due to too many failed authentication attempts.

  • Helping Users in the User Guide to learn how help desk users enable, disable, and unlock user profiles

In this section: