Hi @Anonymous,I’m working on a user authentication system and I need to ensure that each user can only have one active session at any time. Specifically, the requirement is:If a user logs in from a new device or browser, their previous session (if any) should be invalidated or they should be logged out automatically.I'm looking for suggestions on how to implement this functionality using SOAR. Specifically, I would like to know how to track user sessions across devices and enforce session invalidation on login from a new device.Any guidance, best practices, or examples would be greatly appreciated!Thanks!

Explorer

Question

How to Ensure Only One Active Session Per User in SOAR

Forum|Forum|1 year ago
December 12, 2024
1 reply
1301 views

Hi @Anonymous,

I’m working on a user authentication system and I need to ensure that each user can only have one active session at any time. Specifically, the requirement is:

If a user logs in from a new device or browser, their previous session (if any) should be invalidated or they should be logged out automatically.

I'm looking for suggestions on how to implement this functionality using SOAR. Specifically, I would like to know how to track user sessions across devices and enforce session invalidation on login from a new device.

Any guidance, best practices, or examples would be greatly appreciated!

Thanks!

AlokAgar

Staff

Currently, FortiSOAR does allow multiple sessions for a single user.

ranjeetAuthor

Explorer

Hi @AlokAgar ,
Is there any functionality that allows a user to have only one active session?

AlokAgar

Staff

We don't restrict that currently.

However, if this is important to you, we encourage you to reach out to your account manager to request the creation of a feature request for same.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded