Revoking a user's access grant

The following steps explain how to revoke grants issued to a specific user using the Trust Protection Platform UI. You can also revoke a user's grants using the POST vedsdk/oauth/revokegrants method.

NOTE  Using the UI method documented below allows you to revoke specific grants issued to the user, whereas the POST vedsdk/oauth/revokegrants method only allows you to revoke all grants issued to a user.

  1. From the TLS Protect menu bar, click Policy Tree with either Master Admin permission or as the user that is having a grant revoked.

  2. From the tree drop-down, select the Identity tree.

  3. In the left navigation pane, select the identity provider for the user. The users for the identify provider you select will show in the main pane.

  4. Select the user whose grant you want to revoke.

    NOTE  Individual users can revoke their own grants, but revoking another user's grant requires Master Admin permission.

  5. In the user's subtabs, click the Access Grants tab.

  6. Click the grant you want to revoke, and then click Revoke.