NetIQ Access Manager creates user session after validating user’s credentials and terminates /removes user session only when the user manually logs out, or if the user’s session timeout expires due to inactivity.
An organization may have a requirement to find out the number of active sessions and number of unique user’s session. This solution will enable NAM administrator to detect active user sessions, session details (for example session ID, last login time, Remote IP, IDP Roles etc.) and terminate user session(s).
Download SessionJSP.zip file and extract it.
Access NIDP Portal Page: https://<SSO domain>/nidp/portal
Login into NIDP portal using valid credentials. Once your session is established with IDP, try to access URL: https://<SSO doamin>/nidp/jsp/getUserSession.jsp
User Session page should display list all active user’s sessions.
Click on the Session ID link to view session details (Last Login time, User’s IP, IDP Role etc.):
The user might have multiple session if the user has logged in from a different browser. You may choose to kill a single session or Kill all sessions for a user.
Kill a single session:
To kill/remove a single session, click on the cross button located with the session ID.
Kill all sessions for a User:
To kill/remove all sessions for a user, click on the Kill All button.
Disclaimer: As with everything else at NetIQ Cool Solutions, this content is definitely not supported by NetIQ, so Customer Support will not be able to help you if it has any adverse effect on your environment. It just worked for at least one person, and perhaps it will be useful for you too. Be sure to test in a non-production environment.