If an employee has Two-factor authentication (2FA) set up and loses their backup codes, or can't get the authentication to work. Only a domain owner can remove the 2FA settings for the impacted Identity user.
Remove 2FA from the employee account
If the organisations domain has been verified, the domain owner needs to sign into https://identity.accessacloud.com/.
Select My Account then click Two-Factor Authentication.
Click Disable for someone else then enter the users email address.
Click Save.
Note: You can add or remove owners from the same my account area.
What if I don't have the Disable for someone else option?
If you don't have access to the Disable for someone else option, then you need to follow a process in order for Access to perform the removal of 2FA from the Identity user.
β
Raise a new case online, including the following information:
Employee Name.
Employee Email Address (as it appears in Access Evo).
The reason(s) for the request.
Download this form then provide it to the impacted employee user to fill in and send back to you.
Submit the employee populated form to the director of your organisation to complete and sign.
Note: The director of your organisation needs to review and action this form. We can't accept this from any non-director contact.
The director needs to submit the form attached to an email to the Support Analyst and Information Security team which includes the following statement:
"I confirm that I understand the associated risks related to disabling 2FA for the above individual and fully indemnify Access against any action or breach that may incur as a direct result." |
Once our Information Security team confirm with support that 2FA removal for the user has been approved, support will file a request with our Evo Development team to action the 2FA removal.