Skip to content

Terminating Active Sessions

12Port PAM enables authorized users to forcibly end an active Web session when required. Users with Asset Manager permissions on the asset, or those assigned the Site Administrator role, can execute session termination directly from active session entries in either the Asset View or the Sessions Report at the site or asset level.

This capability ensures that privileged access can be immediately revoked whenever operational or security conditions demand intervention.

Administrative Control of Active Sessions

Active privileged sessions represent live access to protected infrastructure. In situations where continued access is no longer appropriate, authorized administrators must be able to immediately revoke that access.

Session termination provides direct administrative control over live connections and is typically used in scenarios such as:

Security Response
When suspicious behavior, policy violations, or anomalous activity is detected, administrators can immediately end the session to contain potential risk.

Policy Enforcement
If a session exceeds its approved scope, duration, or business justification, it can be forcibly closed to maintain governance standards.

Access Revocation
When user permissions change, approvals expire, or credentials are suspected to be compromised, termination ensures that previously granted access does not remain active.

Compliance Alignment
Many regulatory and audit frameworks require demonstrable capability to revoke privileged access in real time. Session termination fulfills this control requirement by enabling immediate administrative intervention.

Note

For automated detection and response capabilities, including policy-based or behavior-driven session termination, refer to the Session Intelligence feature documentation. Session Intelligence enables real-time monitoring, alerting, and automated enforcement actions based on predefined risk indicators and security policies.

Termination Behavior

When a session is terminated:

  • The active Web session is disconnected.
  • The end user is logged out of the PAM session.
  • The session status is updated in the Sessions Report.
  • A termination event is recorded in the Events Report.

Termination is immediate and does not provide the target user with an option to reconnect under the same PAM session instance.

How to Terminate an Active Session

Users with Asset Manager or higher permission (or Site Administrator role) may terminate an active Web session using one of the following procedures:

Option 1: Asset View Page

  1. From the Asset View page, locate the Active Sessions section along the bottom of the asset. This section is visible only when at least one active session is currently using the asset. Asset Active Session Section
  2. Locate the active session to be terminated.
  3. From the session row, select Actions > Terminate.
  4. When prompted, confirm the termination action.
  5. Upon confirmation, the session will disconnect and be removed from the Active Sessions list.


Option 2: Sessions Report (Site or Asset Level)

  1. From the Sessions Report (Site or Asset level), locate the session with Active status.
  2. Select Actions > Terminate for the desired session. Active Session Terminate Option
  3. Confirm the termination action in the confirmation dialog.
  4. The session will disconnect and its status will update accordingly in the report.

User Experience After Termination

When a session is terminated:

  1. The affected user receives session disconnection.
  2. The web session displays a session disconnected notification.
  3. Any in-progress activity is halted.
  4. Re-access requires a new access request and approval workflow, if applicable.

Events Report Logging

Terminated sessions generate entries in both the Events Report and the Session Events Report.

Event Log Entry (Terminate Session):
Level: Information
Category: Operation
Event: Terminate Session
Message: message=Session terminated, channel=<channel> Terminate Session Event Report Log Entry