-
Notifications
You must be signed in to change notification settings - Fork 0
Users
The Users section provides an overview of registered users and their associated configuration. From here you can change if a user should be able to only authenticate with manually created OTP tokens and disable TOTP on a per user basis.
Additionally you can also set specific users to be administrators by checking the checkbox. An exception is the first user you have created while deploying the application. This is done as a safeguard to ensure you don't revoke the administrator privilege accidentally. It is however possible to delete this user if it is desired. When you do this, ensure another user has the administrator privilege, or else you won't be able to mange the app anymore.
On top of managing users and reviewing their successful / failed logins, TOTP status etc., you can remove individual FIDO2 tokens. These will be deleted as soon as the associated user has been deleted. However, a user might have multiple FIDO2 tokens associated with his account. In case he has lost the authenticator device, this allows you to reject further authentications using this devices without relying on the user to remove the token himself.