--- title: Revoke an MDM token description: You can revoke an MDM token. component: pingone page_id: pingone:strong_authentication_mfa:p1_pid_revoke_mdm_token canonical_url: https://docs.pingidentity.com/pingone/strong_authentication_mfa/p1_pid_revoke_mdm_token.html revdate: September 5, 2024 section_ids: about-this-task: About this task steps: Steps result: Result: --- # Revoke an MDM token You can revoke an MDM token. ## About this task A minimum of one token must be retained. If you delete the only token, a new replacement token is automatically generated. | | | | - | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | | At least one token must always exist. If you revoke the only token that exists, a new one is generated automatically. In such a case, all devices will be prevented from authenticating until the new token value is both updated in the MDM and distributed to all devices. Consider setting the **Effective Date** to a future date to allow sufficient time for distribution of the new token to all devices. | ## Steps 1. Go to **Applications > Applications > PingID Mobile** and click **Edit**. ### Result: In the **Mobile Requirements** area, under **Require mobile device management**, a list of MDM tokens displays. 2. Next to the relevant token entry, click **Revoke**, and then click **Save**.