This screen lists all registered devices and provides the option for removing a device from the system. The most recently seen devices are listed first. By default, registered devices are purged 90 days after they were last seen by the Collective. This can be changed in Global Settings.
Background information
Learn about device trust in Multi-stage authorization
Learn about how to configure the on-boarding of new devices in Identity Provider Configuration
Learn about the Client on-boarding cookie in Device Registration
Learn about changing Entitlements in Disable, change or remove access
Learn about using Token renewal and blacklisting in System Operation Token Flow
Actions
It is possible to use bulk actions on the Registered Devices form for performing Claims (and AdminClaims), Administrator and Entitlement token renewals. A confirmation dialogue will be shown were you can enter the reason for the renewal. When this is used the rate of token renewal is limited to 6.66/sec, so for 1200 users it might take 3 minutes to happen.
Action Buttons
Action buttons are accessed by clicking the three dots to the right of each line item in the table or from the <Actions> button within the item. They are contextual, changing depending on the type of item and the state of the item.
Renew Tokens. Use this option to refresh tokens for this device, e.g., to implement changes to a user's Entitlements. Even though this may force an immediate change in the user's Entitlements (or Claims), normally token renewal will be transparent for the user. A confirmation dialogue will include the reason for the renewal.
Remove. Deletes the record of the device from the Controller. The next time the user signs in using that device, it will be treated as a new device. Depending on how on-boarding has been configured in the user's Identity Provider, the Controller will prevent the device from being used altogether or use the on-boarding cookie verification process before allowing the device to connect. Removing a device will revoke the user's tokens so will terminate all the current user's sessions on that device
Blacklist User. Removes access from all devices for this user by revoking all related tokens and adds them to the blacklist preventing them from signing in again. If a user has been blacklisted accidentally, it is possible to restore the user's status from the Blacklisted Users form.