🔗Linking User Accounts

6/2023

Overview

Many scenarios exist where the same human user has access to multiple discrete users accounts, either within the same IDP or across different IDPs -

Admins with both a regular user account and one or more privilege accounts, including across multiple Active Directory domains in an AD forest
Users with separate accounts in non-federated IDPs, perhaps due to a recent M&A event
Users with both a individual account and access to or ownership of a shared account

In these cases, it's extremely important to maintain a linkage between these accounts, both for user lifecycle events (deprovisioning ALL users accounts when a user leaves the org) and during security investigations or incident response.

For more details around the importance of this concept, please see https://docs.oort.io/release-notes/week-23-2023#introducing-the-link-user-capability.

The video below provides instructions on how to use this feature. Instructions are also below

How to Link User Accounts in Oort

Navigate to one of the accounts for a user that has multiple accounts
Scroll to the bottom of the User's Overview tab, to the Linked Users tile
Click Add and search for another account to link to this user. Click Add to link the accounts.
Note that the account(s) are now linked in both the tile and the dropdown under the User's name in the top right.

Filtering for Linked Accounts

In the main Users page, you can use the Linked Users filter on the left bar to find just users with an existing account linkage.

Note that the small link icon appears next to their names.

Removing Account Linkages

Accounts can be unlinked from the Linked Users tile on one of the users account Overview tab.

PreviousImporting Known IP Address Lists NextNetworks Tab & User Investigations

Last updated 10 months ago