Enable/disable two-factor authentication by role

You can enable or disable two-factor authentication at the role level, which overrides any setting you made at the system level. <bsp-callout data-state="{"cms.site.owner":{"_ref":"0000017a-e99b-d9c6-a5fa-eddf364e0000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30006"},"cms.content.publishDate":1656520888674,"cms.content.publishUser":{"_ref":"0000017a-7d63-dc67-abfa-fd6f934d0000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30018"},"cms.content.updateDate":1656520888674,"cms.content.updateUser":{"_ref":"0000017a-7d63-dc67-abfa-fd6f934d0000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30018"},"rekognitionVideo.timeFrameMetadata":[],"callout":{"rekognitionVideo.timeFrameMetadata":[],"callout":{"rekognitionVideo.timeFrameMetadata":[],"type":"WARNING","calloutText":"Enabling two-factor authentication for a role locks all accounts associated with that role until the users are able to enter an authentication password. Ensure that your users are trained and have an authenticator installed on their phones before enabling two-factor authentication at the role level. ","_id":"0000017b-a80a-d1d5-af7f-abef21720000","_type":"a64a25ea-0f4e-3e27-8136-0e63bec56e72"},"_id":"0000017b-a80a-d4bc-a57b-b9ca20bc0000","_type":"96fa12a0-b117-3f56-8123-eefe760f046e"},"theme.0000017a-e99c-d9c6-a5fa-eddf027f0000.:core:enhancement:Enhancement.hbs.enhancementAlignment":null,"_id":"0000017b-a80a-d4bc-a57b-b9ca20b00000","_type":"98cde75f-32a8-3181-9416-3bf9f401af77"}"> To enable or disable two-factor authentication at the role level: <bsp-snippet data-snippet-state="{"cms.site.owner":{"_ref":"0000017a-e99b-d9c6-a5fa-eddf364e0000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30006"},"cms.content.publishDate":1647527218531,"cms.content.publishUser":{"_ref":"00000165-6c20-dfe9-abef-edbd9fd90000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30018"},"cms.content.updateDate":1647527218531,"cms.content.updateUser":{"_ref":"00000165-6c20-dfe9-abef-edbd9fd90000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30018"},"rekognitionVideo.timeFrameMetadata":[],"snippet":{"_ref":"0000017b-64ab-d86b-a77f-6dafb98c0001","_type":"d2a205aa-dd4d-3a6e-acf9-d4f7609d4d35"},"variantId":"0000017c-ec3e-d887-af7f-ef3e12410000","theme.0000017a-e99c-d9c6-a5fa-eddf027f0000.:core:enhancement:Enhancement.hbs.enhancementAlignment":null,"theme.0000017a-e99c-d9c6-a5fa-eddf027f0000.:core:enhancement:Enhancement.hbs._template":null,"_id":"0000017f-9846-d595-a17f-fcce26f70000","_type":"968481a3-3236-3bd5-82c4-ba78207b9d17"}"> In the Roles widget, select the role for which you want to enable or disable two-factor authentication. Toward the right of the widget, select <bsp-snippet data-snippet-state="{"cms.site.owner":{"_ref":"0000017a-e99b-d9c6-a5fa-eddf364e0000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30006"},"cms.content.publishDate":1630611934498,"cms.content.publishUser":{"_ref":"00000165-6c20-dfe9-abef-edbd9fd90000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30018"},"cms.content.updateDate":1630611934498,"cms.content.updateUser":{"_ref":"00000165-6c20-dfe9-abef-edbd9fd90000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30018"},"rekognitionVideo.timeFrameMetadata":[],"snippet":{"_ref":"0000017b-6414-d86b-a77f-6d9df44c0001","_type":"d2a205aa-dd4d-3a6e-acf9-d4f7609d4d35"},"theme.0000017a-e99c-d9c6-a5fa-eddf027f0000.:core:enhancement:Enhancement.hbs.enhancementAlignment":null,"theme.0000017a-e99c-d9c6-a5fa-eddf027f0000.:core:enhancement:Enhancement.hbs._template":null,"_id":"0000017b-a80b-d4bc-a57b-b9cb6c1f0000","_type":"968481a3-3236-3bd5-82c4-ba78207b9d17"}"> > Advanced . From the Two-Factor Authentication Required field, select one of the following: Default —Two-factor authentication setting for the role’s users is the same as at the site level. Required —Role’s users need two-factor authentication to log in. Not Required —Role’s users do not need two-factor authentication to log in. <bsp-snippet data-snippet-state="{"cms.site.owner":{"_ref":"0000017a-e99b-d9c6-a5fa-eddf364e0000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30006"},"cms.content.publishDate":1647527338738,"cms.content.publishUser":{"_ref":"00000165-6c20-dfe9-abef-edbd9fd90000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30018"},"cms.content.updateDate":1647527338738,"cms.content.updateUser":{"_ref":"00000165-6c20-dfe9-abef-edbd9fd90000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30018"},"rekognitionVideo.timeFrameMetadata":[],"snippet":{"_ref":"0000017b-64b0-d86b-a77f-6dbde5810001","_type":"d2a205aa-dd4d-3a6e-acf9-d4f7609d4d35"},"variantId":"0000017c-ec0f-d887-af7f-ef3f83bd0000","theme.0000017a-e99c-d9c6-a5fa-eddf027f0000.:core:enhancement:Enhancement.hbs.enhancementAlignment":null,"theme.0000017a-e99c-d9c6-a5fa-eddf027f0000.:core:enhancement:Enhancement.hbs._template":null,"_id":"0000017f-9848-d595-a17f-fcc80d680000","_type":"968481a3-3236-3bd5-82c4-ba78207b9d17"}"> <bsp-callout data-state="{"cms.site.owner":{"_ref":"0000017a-e99b-d9c6-a5fa-eddf364e0000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30006"},"cms.content.publishDate":1656520910919,"cms.content.publishUser":{"_ref":"0000017a-7d63-dc67-abfa-fd6f934d0000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30018"},"cms.content.updateDate":1656520910919,"cms.content.updateUser":{"_ref":"0000017a-7d63-dc67-abfa-fd6f934d0000","_type":"0000015d-56b9-d2db-a5dd-f6fd6ee30018"},"rekognitionVideo.timeFrameMetadata":[],"callout":{"rekognitionVideo.timeFrameMetadata":[],"callout":{"rekognitionVideo.timeFrameMetadata":[],"type":"NOTE","calloutText":"Individual users can enable two-factor authentication even if it is not required at the role level. For details, see <a href=\"/enabling-two-factor-authentication-in-your-profile\" data-cms-id=\"00000181-b045-dbe4-a1e5-b2cfd3000000\" data-cms-href=\"/enabling-two-factor-authentication-in-your-profile\" link-data=\"{&quot;cms.site.owner&quot;:{&quot;_ref&quot;:&quot;0000017a-e99b-d9c6-a5fa-eddf364e0000&quot;,&quot;_type&quot;:&quot;0000015d-56b9-d2db-a5dd-f6fd6ee30006&quot;},&quot;cms.content.publishDate&quot;:1656520910825,&quot;cms.content.publishUser&quot;:{&quot;_ref&quot;:&quot;0000017a-7d63-dc67-abfa-fd6f934d0000&quot;,&quot;_type&quot;:&quot;0000015d-56b9-d2db-a5dd-f6fd6ee30018&quot;},&quot;cms.content.updateDate&quot;:1656520910825,&quot;cms.content.updateUser&quot;:{&quot;_ref&quot;:&quot;0000017a-7d63-dc67-abfa-fd6f934d0000&quot;,&quot;_type&quot;:&quot;0000015d-56b9-d2db-a5dd-f6fd6ee30018&quot;},&quot;rekognitionVideo.timeFrameMetadata&quot;:[],&quot;link&quot;:{&quot;rekognitionVideo.timeFrameMetadata&quot;:[],&quot;attributes&quot;:[],&quot;item&quot;:{&quot;_ref&quot;:&quot;00000181-b045-dbe4-a1e5-b2cfd3000000&quot;,&quot;_type&quot;:&quot;75918a10-b479-3fb1-bb84-6a57df4b0241&quot;},&quot;_id&quot;:&quot;00000181-b056-dd65-ade3-f856f9ad0000&quot;,&quot;_type&quot;:&quot;0000015d-56b9-d2db-a5dd-f6fd6ed10000&quot;},&quot;linkText&quot;:&quot;Enabling two-factor authentication in your profile&quot;,&quot;theme.0000017a-e99c-d9c6-a5fa-eddf027f0000.:core:link:Link.hbs.linkStyle&quot;:null,&quot;theme.0000017a-e99c-d9c6-a5fa-eddf027f0000.:core:enhancement:Enhancement.hbs.enhancementAlignment&quot;:null,&quot;theme.0000017a-e99c-d9c6-a5fa-eddf027f0000.:core:link:Link.hbs._template&quot;:null,&quot;_id&quot;:&quot;00000181-b056-dd65-ade3-f856f9ac0000&quot;,&quot;_type&quot;:&quot;00000162-ab56-d787-af72-fb57299f0000&quot;}\">Enabling two-factor authentication in your profile .","_id":"0000017b-a80b-d1d5-af7f-abef12000000","_type":"a64a25ea-0f4e-3e27-8136-0e63bec56e72"},"_id":"0000017b-a80b-d4bc-a57b-b9cb114b0000","_type":"96fa12a0-b117-3f56-8123-eefe760f046e"},"theme.0000017a-e99c-d9c6-a5fa-eddf027f0000.:core:enhancement:Enhancement.hbs.enhancementAlignment":null,"_id":"0000017b-a80b-d4bc-a57b-b9cb11320000","_type":"98cde75f-32a8-3181-9416-3bf9f401af77"}">