ALERT! The community will be read-only starting on April 19, 8am Pacific as the migration begins. Read more for important details.
ALERT! The community will be read-only starting on April 19, 8am Pacific as the migration begins.Read more for important details.

Let users re-enroll TOTP device

Idea ID 2791154

Let users re-enroll TOTP device

If a user is enrolled with TOTP device and for some (not uncommon) reason needs to re-enroll with a new device, an administrator with access needs to clear the TOTP secret attribute value for the user so it will get presented with the enrollment guide.

It would be preferred if a user could manage its own TOTP attribute and clear it in order to re-enroll, without administrator intervention.

Internal bug report reference SR#101124789261.
2 Comments
Absent Member.
Absent Member.
Your best solution for this is to use Advanced Authentication which simply plugs into NAM and includes MANY other features including the ability to use the same TOTP method for non-NAM resources. See links here: https://www.netiq.com/documentation/access-manager-44/admin/data/b1lbhhe7.html#adv_auth https://www.netiq.com/products/advanced-authentication/
Absent Member.
Absent Member.
I have a customer who is looking for the same functionality. They want to use NAM OTP and have the end users to manage their own devices through a web page.
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.