Confirm the results of Universal Logout
Universal Logout actions appear in the System Log and on the user profile page, indicating that the user's session and tokens were terminated. If the event you're looking for doesn't appear in the System Log, Universal Logout wasn't successful.
View results in the System Log
-
In the Admin Console, go to .
-
Configure the date range and enter a username.
-
Click the magnifying glass icon beside the Search field.
-
Search for any of the following events:
- user.session.end appears when Okta invokes Universal Logout in response to a session violation.
- user.session.universal_logout appears when Okta or an admin invokes Universal Logout for a user.
- user.authentication.universal_logout appears when Okta or an admin invokes Universal Logout against an app instance.
- user.authentication.universal_logout.scheduled appears when an admin manually triggers Universal Logout against an app instance.
-
Expand the appropriate event and verify that a SUCCESS message appears in the details.
View results on the user profile page
If the Universal Logout event is a result of your entity risk policy, you can view that from a user's profile.
-
In the Admin Console, go to .
-
Select a user.
-
Open the Risk tab.
-
Search for the event in the User-related Detections table.
-
Scroll to the right. If the user's sessions and tokens were successfully terminated, Universal Logout appears in the Actions column.
Related topics
Configure Universal Logout for supported apps