Identity as a Service (IDaaS) allows an administrator to view the details of a specific account and change the account status.
Log on to the IDaaS console. In the left-side navigation pane, choose Accounts > Accounts and Orgs. On the Accounts page, find the account that you want to manage, click the account name or click Details in the Actions column to go to the account details page.
The information about the fields displayed on the account details page is not de-identified. If you have the administrator permissions, you can view all information about the account except the password.
User Information
Basic Information
The key information you must enter when you create and edit an account.
Other Information
The metadata of the account, including the account type, the time when the account is created, and the information about the recent use of the account.
Third-Party Bindings
You can manage third-party accounts that are bound to the account. You can also view the binding information. If a user wants to bind their account to other third-party accounts, you can unbind the account from the bound accounts as an administrator to allow the user to bind to other accounts.
If an account is imported from an identity provider (IdP) such as DingTalk or Active Directory (AD) by using data synchronization, the account cannot be manually unbound. If an account is bound to an OpenID Connect (OIDC) IdP or the account is manually bound to an IdP on the My Account page in the IDaaS console, the account can be manually unbound. For example, if you log on to an account and bind the account to DingTalk on the My Account page, you can manually unbind the account.
OTP Bound
An administrator can manually unbind an one-time password (OTP) app from an account. This way, the account can be bound to another OTP app in case of device loss or change. Each account can be bound to only one OTP authenticator.
WebAuthn-registered authenticator
An administrator can register a WebAuthn authenticator for an account or remove a WebAuthn authenticator from an account.
Permissions
An administrator can check which applications are accessible to the current account under the current authorization policies.
Status changes
In the upper-right corner of the account details page, the following buttons are displayed:
Password Reset
Disable Account or Enable Account
Unlock Account
Delete Account
For more information about account status, see Account lifecycle.
Reset Password
An administrator can reset the password of the specified account. The password must meet the complexity requirements.
You can also click Generate to automatically generate a password that meets the complexity requirements.
You can click Copy Password to copy the account name and new password and send them to your team members.
