Contact UsGet started
© 2025 Direct Cursus Technology L.L.C.

Activating a user

Written by
Updated at November 25, 2025

You can activate previously deactivated users. After activation, users regain access to the organization resources they have access permissions for.

Note

You can activate and deactivate only federated and local users. You cannot activate or deactivate Yandex account users.

Activating a federated user

To activate a federated user account:

  1. Log in to Yandex Identity Hub using an administrator or organization owner account.

  2. In the left-hand panel, select Users and find the federated or local user you need.

    Optionally, use the search bar or filter at the top of the page.

  3. In the row with the user, click and select Activate.

  4. In the window that opens, confirm the activation.

If you do not have the Yandex Cloud CLI installed yet, install and initialize it.

By default, the CLI uses the folder specified when creating the profile. To change the default folder, use the yc config set folder-id <folder_ID> command. You can also set a different folder for any specific command using the --folder-name or --folder-id parameter.

  1. See the description of the CLI command for activating federated users:

    yc organization-manager federation saml reactivate-user-accounts --help

  2. Get a list of federations in the organization:

    yc organization-manager federation saml list \
  --organization-id <organization_ID>

    Where --organization-id is the ID of the organization you need the list of federations for.

  3. Get a list of deactivated federation users:

    yc organization-manager federation saml list-user-accounts <federation_ID> \
  --organization-id <organization_ID> \
  --filter active=false

    Where:

    • <federation_ID>: ID of the federation you need the list of users for.
    • --organization-id: ID of the organization the federation belongs to.
    • --filter active=false: Filter to get only deactivated users.

  4. To activate users, provide their IDs in this command:

    yc organization-manager federation saml reactivate-user-accounts <federation_ID> \
  --subject-ids <user_1_ID>,<user_2_ID>,...,<user_N_ID> \
  --organization-id <organization_ID>

    Where:

    • <federation_ID>: ID of the federation to activate users in.
    • --subject-ids: List of user IDs to activate.
    • --organization-id: ID of the organization the federation belongs to.

Activating a local user

Note

This feature is at the Preview stage.

To activate a local user account:

  1. Log in to Yandex Identity Hub using an administrator or organization owner account.

  2. In the left-hand panel, select Users and find the federated or local user you need.

    Optionally, use the search bar or filter at the top of the page.

  3. In the row with the user, click and select Activate.

  4. In the window that opens, confirm the activation.

If you do not have the Yandex Cloud CLI installed yet, install and initialize it.

By default, the CLI uses the folder specified when creating the profile. To change the default folder, use the yc config set folder-id <folder_ID> command. You can also set a different folder for any specific command using the --folder-name or --folder-id parameter.

  1. View the description of the CLI command to activate a pool user:

    yc organization-manager idp user reactivate --help

  2. To get a list of pools in an organization, provide its ID in this command:

    yc organization-manager idp userpool list \
  --organization-id <organization_ID>

    Result:

    +----------------------+--------------+-------------+----------------------+---------------------+
|          ID          |     NAME     | DESCRIPTION |   ORGANIZATION ID    |     CREATED AT      |
+----------------------+--------------+-------------+----------------------+---------------------+
| ek0o6g0irskn******** | sample-pool1 |             | bpf2c65rqcl8******** | 2025-05-17 10:01:04 |
| ek03mf01jr4z******** | sample-pool2 |             | bpf2c65rqcl8******** | 2025-06-28 16:30:23 |
+----------------------+--------------+-------------+----------------------+---------------------+

  3. To get the IDs and other information about pool users, provide the pool ID in the following command:

    yc organization-manager idp user list \
  --userpool-id <user_pool_ID>

    Result:

    +----------------------+----------------------------------------+-----------+----------------------+-----------+---------------------+
|          ID          |                USERNAME                | FULL NAME |     USERPOOL ID      | IS ACTIVE |     CREATED AT      |
+----------------------+----------------------------------------+-----------+----------------------+-----------+---------------------+
| aje3i1gq49n3******** | test-user1@test.ru.idp.yandexcloud.net | User 1    | ek0o6g0irskn******** | true      | 2025-10-07 10:41:54 |
| aje0j5mts02t******** | test-user2@test.ru.idp.yandexcloud.net | User 2    | ek0o6g0irskn******** | false     | 2025-07-16 11:18:57 |
+----------------------+----------------------------------------+-----------+----------------------+-----------+---------------------+

  4. To activate a user, provide their ID in this command:

    yc organization-manager idp user reactivate <user_ID>

See also

Previous
Viewing user groups
Next
Deactivating a user