This document shows you how to deactivate the mobile devices used by a user to generate passcodes for access to applications requiring time-based one-time (TOTP) as two-factor authentication. You deactivate the user mobile devices from the administration console for SAP Cloud Identity Services.
You deactivate all user's mobile devices that generate passcodes if a single device has been lost or stolen. You cannot deactivate a single device.
If you deactivate the mobile devices, the user will no longer be able to log on to applications that require passcodes. To be able to access them again the user has to activate a new mobile device on the user profile page. For more information, see the Related Information.
To deactivate the mobile devices that generate passcodes, proceed as follows:
-
Find the user whose device you want to deactivate.
For more information about how to find a user in Identity Authentication, see Search Users.
-
Select the user whose device you want to deactivate.
-
Choose the Authentication tab.
-
Choose Multi-Factor Authentication.
-
Under TOTP, use the slider next to Status to deactivate two-factor authentication.
Related Information
Deactivate Two-Factor Authentication
Remove User Device for Web Two-Factor Authentication
Allow Users to Protect Accounts with Second Factor for Authentication