Managing a user’s devices and services
In environments that use multi-factor authentication (MFA), administrators can manage a user’s MFA devices and service from the Users page.
About this task
From the Users page, you can remove a device, enable or disable a device, and bypass an authentication service. For example, you can bypass secondary authentication for a specified amount of time if a user loses or damages the MFA device that is paired with PingOne.
Steps
-
Go to Directory → Users.
-
Locate the user you want to edit. You can browse or search for users.
-
Click the user entry to open the user details panel.
-
Click Services and then Authentication.
-
Do one or more of the following:
Choose from:
-
To change the default device, under Methods and Devices locate the appropriate authentication method. Click the three dots options menu and then click Make primary.
-
To show when the device was paired, locate the appropriate authentication method under Methods and Devices.
-
To unpair a device, under Methods and Devices locate the appropriate authentication method. Click the three dots options menu and then click Unpair.
-
To block a device, under Methods and Devices locate the appropriate authentication method. Click the three dots options menu and then click Block. After you block a device, the Block option in the menu is replaced with an Unblock option.
-
To disable a service, under Integrations locate the appropriate service. Click the three dots options menu and then click Disable.
-
To bypass a service, under Integrations locate the appropriate service. Click the three dots options menu and then click Bypass. From the list, select the duration to bypass the service. After the specified time elapses, PingOne resumes the service automatically.
-
To configure PingID settings, click Configure Now. For more information about PingID settings, see PingID User Life Cycle Management in the PingID documentation.
-
-
Click Save.