Remove all active identity provider sessions. This forces the user to authenticate on the next operation. It optionally revokes OpenID Connect and OAuth refresh and access tokens issued to the user.

Required fields are indicated in red.


  • User
    • User ID (text): Unique identification of the user.
    • Revoke oauthTokens? (true/false): Revoke OAuth tokens if true.


  • Status Code (number): Status code returned by the Okta API.