How to Manage TOTP Users in SMA 1000
07/28/2020 7 2814
SMA 1000 provides the ability to unlock the TOTP user accounts and De-register the user account from the AMC as well as from Workplace.In this article, we will see how to manage the TOTP users in SMA 1000.
An administrator can define the number of failed login attempts (TOTP) after which the user account gets locked. In this case, the administrator can unlock the user account from AMC.
If the user resets their phone or lost/replaced their phones, they need to do a new registration. The administrator has the ability to De-register the user from AMC so that the user when tries to login they will be prompted to register their account in their App to generate TOTP.
Viewing TOTP User Status in AMC:
1. Login to AMC and navigate to Authentication Servers. Under Other servers, Click Edit next to Configure time-based one-time password (TOTP) settings. Go to Users tab.
The username and the status of all TOTP users will be displayed here. You can filter users based on Authentication server or status and also you can search for a user.
If Status is Active, the user is registered and logged in successfully. They will be able to continue using TOTP from the App for subsequent logins.
The admin can also see when the user last logged in successfully from this page.
Unlocking TOTP User:
The admin can define the number of failed login attempts for a user. Click here to see how to configure TOTP in SMA 1000. When a user enters incorrect TOTP while login for configured number of failed login attempts, their account gets locked and status of the user in AMC will show as Locked.
Select the user and click on Unlock button as shown below:
Now, the status of the user will be Active and they will be able to login.
De-register the user from AMC:
Select the user and click on Delete to De-register the user from AMC.
Once the user is deleted, they need to do new registration on their TOTP App to be able to login further.
Note: If user has access to the registered App and admin has enabled the option "Allow user to De-register account" in AMC, the user can De-register their TOTP accounts themselves from workplace. User will be prompted to register during next login.