4b0ql (4b0ql) asked a question.
Ability to clear Okta user security info
Is there a way for the admins (via the UI) to clear the security question and/or the security image for a single user? (similar to the MFA clear process)
- JerrellG.67360 (Customer)
Hello Nikki,
Thank you for reaching out to Okta. At this time Security question and/or the security image is a global setting.
Here is a KB article:
https://help.okta.com/en/prod/Content/Topics/Settings/Settings_Customization.htm
Configure a secondary email option for end users
When you enable the secondary email option, your end users can provide a secondary email address in their Accounts page to which password reset and account creation notices are sent. If this option is disabled, such notices are sent only to your end users' primary email address.
Click Edit in the Optional User Account Fields section.
Set the Secondary Email option to Enabled.
Click Save.
Configure a security image for the Sign-In page
You can configure a security image to appear when users enter a valid Okta username in the Sign-In page. The appearance of the security image helps protect end users against phishing attacks. When a security image is configured, users signing in to Okta for the first time are prompted to select an image. The browser receives a cookie containing the selected security image. The cookie is signed by the site certificate to ensure that an attack site cannot access and load the security image. When users recognize their selected security image, they are reassured that they are logging in to their org.
Note: Because the browser must first create the cookie before displaying the image, the security image is not displayed in the following circumstances:
First login
First login from a new browser or device
First login after clearing cookies
Click Edit in the Optional User Account Fields section.
Choose whether new end users are prompted to select a Security Image the first time they sign in to Okta.
Click Save.
Okta recommends using Multifactor Authentication (MFA) as a further layer of Security.
Here is another post similar to your question:
https://support.okta.com/help/s/question/0D51Y000060O02PSAS/ability-to-clear-okta-user-security-info
You can always open a Feature Request for this concern.
To open a feature request you would login to your Okta Tenant and select Admin. Scroll to the bottom of the page and select the "Feedback" or use the following URL https://support.okta.com/help/s/ideas to post an Idea. Scroll to the bottom of the page and select "Go To Ideas" This will allow our PM team to review your request and prioritize your request with our development team.
Expand Post - 4b0ql (4b0ql)
Thanks for the detailed response, but I didn't quite catch a yes or a no in there, as well the link provided for similar questions takes me back to this very same post. As you suggested opening a feature request for it can I assume that it is not an available feature via the API or the UI at an individual level?
- jerrell.gary1.4491858992560479E12 (Presales - Americas Commercial, Emerging West)
Nikki,
If you would like to have this option in the Okta Graphical Interface, you will need to create a feature request. To be able to target a specific user to clear their security question and/or the security image. As of now in the UI this setting is a global option.
Although if you are familiar with our API collections. There are
some limited options to clear end user’s factors.
Please visit the following URL for Okta’s API collections - https://developer.okta.com/reference/
Expand Post
This question is closed.
Nikki,
If you would like to have this option in the Okta Graphical Interface, you will need to create a feature request. To be able to target a specific user to clear their security question and/or the security image. As of now in the UI this setting is a global option.
Although if you are familiar with our API collections. There are
some limited options to clear end user’s factors.
Please visit the following URL for Okta’s API collections - https://developer.okta.com/reference/