If a user of the PingID service doesn't have access to the mobile device that is paired with PingID, you can bypass a user's secondary authentication for a selected duration. At the end of a limited duration, secondary authentication for the user resumes automatically.

  1. In the PingOne admin portal, go to Users > Users by Service.
  2. Click the desired service.

    The list is filtered to display only the selected service users.

  3. For a selected user, click the Expand icon to expand the user information for the service.
  4. Click the Edit icon, then click the Bypass toggle.
  5. From the list, select the duration to bypass the service.

    Only global administrators can select Unlimited Time to bypass the service indefinitely. All other administrators that have bypass permissions are restricted to a maximum period of 3 days.

    Note: For more information on the types of administrative roles available, see Assign administrative roles in the PingOne for Enterprise help.
  6. To enable your bypass setting, click the Bypass toggle again.

    When the selected length of time has passed, authentication automatically resumes for the user.

    If you select Unlimited Time, the user will never be authenticated using this authentication provider.

    The bypass is implemented and effective immediately.