The one-time passcode (OTP) fallback setting allows administrators to configure whether users can fall back to an OTP when the mobile app response times out.
Disabling this setting helps to enforce a security policy that requires authentication by biometrics only. The default setting is Enable.
Note:
- You can also enable direct OTP selection to allow users to authenticate with an OTP immediately, without waiting for the authentication request to time out. For more information, see Configuring direct passcode usage.
- If you are using PingOne DaVinci to orchestrate your PingID flows, and want to disable OTP fallback, you must disable it in the flow settings node in DaVinci, as well as the Admin portal.
-
In the One-Time Passcode Fallback section of the
Authentication section, select one of the following
options:
- To disable authenticating with an OTP when the mobile app response times out,
click Disable. If the request times out or the user's
mobile is offline, the user receives the yellow Timed Out
message.
If the user's mobile is in no push mode, the user will receive the following error message.
To configure push mode, go to in the PingID mobile app.
CAUTION:Users with mobile devices that do not support push notifications will not be able to authenticate if the Disable setting is selected.
- To enable authenticating with an OTP when the mobile app response times out,
click Enable. This is the default setting. If the request
times out, the user can authenticate using an OTP.
- To disable authenticating with an OTP when the mobile app response times out,
click Disable. If the request times out or the user's
mobile is offline, the user receives the yellow Timed Out
message.