User & Device Management
The BlokSec admin console lets you manage users and their registered devices. This guide covers viewing user details, managing devices, and the implications of removing devices or unregistering a user.
Viewing a user
Section titled “Viewing a user”- Sign in to the BlokSec admin console
- Navigate to Users in the sidebar
- Click on a user to open their detail page
The user detail page shows their profile information, registered devices, accounts, and recent authentication requests.
Devices
Section titled “Devices”Each user can have one or more registered devices. A device is the mobile phone running the BlokSec app that the user authenticates with. The devices section shows:
- Device name and model (e.g., “iPhone 16 Pro”)
- Platform and OS version
- Last active timestamp
- Push notification status — whether the device is receiving push notifications
Active device
Section titled “Active device”One device is marked as the active device for push notifications. When the user receives a sign-in request, the push notification is sent to this device. You can change which device is active by clicking the radio icon on any device that has a push token available.
Removing a device
Section titled “Removing a device”To remove a specific device, click the trash icon on the device row. You’ll be asked to type “remove device” to confirm.
When you remove a device:
- A revoke push notification is sent to the device, telling the app that the device has been removed
- The device is removed from the user’s registered devices in the database
- If the device receives the push notification, the app resets immediately. If it doesn’t, the next time the user opens the app it contacts the API, learns the device was removed, and resets
- The user is returned to the welcome/onboarding flow in the app
What the user sees
Section titled “What the user sees”The experience varies depending on how the device receives the revocation notice:
| Scenario | What the user sees |
|---|---|
| Push notification received (Android) | Notification: “Device Revoked — This device has been removed from your account.” App resets to welcome screen. |
| Push notification received (iOS) | Standard notification with the same message. App resets to welcome screen. |
| Push not received, user opens app later | Brief error message: “This account is no longer accessible.” App resets to welcome screen. |
Unregistering all devices
Section titled “Unregistering all devices”The Unregister All Devices button removes all devices and fully resets the user’s identity. You’ll be asked to type “unregister all devices” to confirm.
This action:
- Sends a revoke push notification to all registered devices
- Removes all devices from the user’s record
- Resets the user’s identity (DID) — this is necessary so the user can re-initialize their cryptographic keys on a new device
- Resets the DID on all of the user’s accounts across your applications
After unregistration, a claim QR code is generated on the user detail page. The user must scan this QR code with the BlokSec app to re-enroll.
When to use each action
Section titled “When to use each action”| Situation | Recommended action |
|---|---|
| User got a new phone and has a BlokSec backup | No action needed — user restores from backup on the new device |
| User got a new phone and has no backup | Click Unregister All Devices, then have the user scan the claim QR code |
| User lost their phone | Click Unregister All Devices to revoke access, then re-enroll when ready |
| User has multiple devices and you want to remove one | Click the trash icon on the specific device |
| User is leaving the organization | Remove the user’s accounts from your applications instead of unregistering devices |