Let users re-enroll TOTP device

WilliamJ · ‎2017-11-24

If a user is enrolled with TOTP device and for some (not uncommon) reason needs to re-enroll with a new device, an administrator with access needs to clear the TOTP secret attribute value for the user so it will get presented with the enrollment guide.

It would be preferred if a user could manage its own TOTP attribute and clear it in order to re-enroll, without administrator intervention.

Internal bug report reference SR#101124789261.

PaulM3 · ‎2017-11-29

Your best solution for this is to use Advanced Authentication which simply plugs into NAM and includes MANY other features including the ability to use the same TOTP method for non-NAM resources. See links here: https://www.netiq.com/documentation/access-manager-44/admin/data/b1lbhhe7.html#adv_auth https://www.netiq.com/products/advanced-authentication/

HugoH · ‎2018-05-07

I have a customer who is looking for the same functionality. They want to use NAM OTP and have the end users to manage their own devices through a web page.

Let users re-enroll TOTP device

Idea ID 2791154

Let users re-enroll TOTP device

User name as parameter in an combination of NAM and NAAF

Reduce AutCode Length: Problem with Windows Integrations

Enable RBA Validate Tool / feature by default

NAM44 OIDC . Would like strucure {"keys":[{"kid":"nam-xxx"

Enforce authentication / Assign authentication contract for the OAuth Client Applications

LetsEncrypt support (v2 API)

During login, send JSON response instead of HTML

Access Manager to support CAS

Advanced Authentication User Portal SSO with Access Manager