Identity Management

Last Updated: July 02, 2026

When you connect an identity provider, Vasion assigns a unique identity to uniquely identify an individual who accesses the application.

Identities authenticate through multiple methods:

  • Local: Created manually within Vasion Automate or PrinterLogic.
  • IdP: Managed through third-party identity services like Okta, Entra ID (Azure AD), Google Identity, etc.
  • LDAP Domain: Synchronized from directory services.

The unified login experience allows identities to be recognized across both PrinterLogic and Vasion Automate.

Vasion cannot remove provisioned users from a customer's database for security and compliance reasons. There are a few options admins can use to remove users individually or in bulk from their instance. Details on both methods are included below.

Individual Users

The access to the users individual identities depends on how your instance is configured. An instance with a single IdP configured displays the Identities screen, while an instance configured with multiple IdPs displays the Identity Management screen.

To access the identities go to Tools then Identities, or Tools then Identity Management depending on your instance setup.

On either screen you can use the Search button Search button to enable the field you can use to filter users by name or username.

Identities

Identities displays the following user details in a table format:

Name
Displays the user's name as defined by the First Name and Last Name fields in the IdP or local user record.
Username
Displays the username, which is defined by the IdP or local user record.
Source
Displays the IdP source, such as Entra ID, Okta, etc. If the user was added manually as a local user the source displays vasion.
Groups
Displays group associations for the user as assigned in the IdP.
More button More menu.
Select the button to view full details about the identity and to access the Delete option.

Admin Console showing Identities tab and list of records.

Identities Details

When you select the More button More menu., you have the options to view identity details or to delete the identity.

When you select Details, the side panel displays the fields configured in the provider’s system or local record, including the following:

  • First Name: First name as defined in the provider’s system or local user record.
  • Last Name: Last name as defined in the provider’s system or local user record.
  • Display Name: First and last names.
  • Email: User’s email address.
  • Username: Username as defined in the provider’s system or local user record.
  • Source: Source of the record, the name of the provider, or vasion if it is a local record.
  • IdP ID ID: The IdP‘s unique identifier (UUID) assigned by PrinterLogic to the identity provider, or Platform for local user records.
  • Groups: The user groups associated with the identity or None if no groups are associated.

To delete a user:

  1. Select the More menu More menu. to the right of the user information.
  2. Select Delete.

    Expanded More menu with Details and Delete options for user.

  3. Select Delete in the modal.

    Delete User? modal showing Delete button.

Details panel, showing name, email, source, and ID.

Identity Management

The screen displays the following for each user in a table:

Name
User's name as defined by the First Name and Last Name fields in the IdP or local user record.
Username
Username, which is defined by the IdP or local user record.
Source
IdP source, such as Entra ID, Okta, etc. If the user was added manually as a local user the source displays vasion.
Groups
Group associations for the user as assigned in the IdP.
More button More menu.
Select the button to view full details about the identity and to access the Delete option.

Identity Management screen, showing list of identities.

Identity Management Details

To view identity details, use the More button.

  1. Select the More menu More menu. to the right of the user information.
  2. Select Details.

    Expanded "more" menu, showing Details option.

The identity Details panel shows the following:

  • Identity ID: Unique identifier (UUID) assigned by Vasion.
  • Associated Users: Display name, consisting of the first and last names, or the username. It also displays the UUID associated with the user record.

When an identity is associated with more than one user, in the case of concurrent multiple IdPs, the Details panel displays all of the users associated with that identity.

Details panel, showing ID and associated users.

Details panel, showing ID and associated user.

User Details

Select a user from the Associated Users list to open the Associated Userpanel and view field data configured in the provider’s system or local user record, including the following:

  • First Name: First name as defined in the provider’s system or local user record.
  • Last Name: Last name as defined in the provider’s system or local user record.
  • Display Name: First and last names.
  • Email: User’s email address.
  • Username: Username as defined in the provider’s system or local user record.
  • Source: Source of the record, the name of the provider or if it’s a local record, vasion.
  • IdP ID: IdP's unique identifier (UUID) assigned by PrinterLogic to the identity provider, or Platform for local user records.
  • Groups: User groups associated with the identity or None if no groups are associated.

To delete a user:

  1. Select the More menu More menu. to the right of the user information.
  2. Select Details.

    Expanded "more" menu, showing Details option.

  3. If more than one associated user display, select the user you want to delete.

  4. Select Delete User at the bottom of the Associated Users panel.

  5. Select Delete in the modal.

    Delete User? modal showing Delete button.

Associated User panel, showing details for selected user.

Bulk Removal

LDAP Users

Do the following to remove all LDAP users and groups:

  1. In the Admin Console, select Tools then Settings then General.
  2. In the Identity Provider Settings section, select LDAP.
  3. In the LDAP Sync section, select the Delete Provisioned LDAP Data option.
  4. Enter "DELETE" in the text field.
  5. Select Delete.

    This action deletes all LDAP users and groups from the database for all configured Active Directory domains and requires you to provision them again. You cannot undo this action.

The Role-Based Access Control (RBAC), portal security, and printer deployment rules associated with these users and groups continue to function unless you delete them.

Delete LDAP Provisioning Data showing DELETE in text field.

IdP Users

There are three actions for bulk IdP user management:

Deactivate All Users
This action deactivates all users for the selected IdP. Restart the sync to enable the users again.
Delete Provisioned Data
This action deletes all IdP users and groups from the database for the selected IdP. This action also removes all RBAC, portal security, and printer deployment rule associations for the users and groups; they must be provisioned again to be available for use.
Delete IdP Groups
This action deletes all IdP groups from the database for the selected IdP. This action also removes all RBAC, portal security, and printer deployment rule associations for the groups; they must be provisioned again to be available for use.
  1. Navigate to Tools then Settings then General in the Admin Console.
  2. In the Identity Provider Settings section, select SCIM.
  3. From the dropdown menu, select the desired IdP.
  4. Select the button for the desired action.
  5. Follow the Proceed and Delete prompts in the modal.

Admin Console showing Identity Provider Settings section, SCIM option selected, and bulk user-management options.