00ueuc93x4Cm8One20h1.5251321845916467E12 (Customer) asked a question.
When resetting MFA factors for a non-admin user from an admin account the corresponding "core.user.factor.reset_all" and "core.user.email.message_sent.mfa_reset_notification" tied to MFA reset activity for the non-admin user occurs in a separate session that is not the original session of the admin. This new session would only include the two events mentioned above, where as the login/other activity of the admin would be in a different session.
Is there a way to correlate the admin account activity between the sessions? Or it would be ideal if all of this activity is represented in the same session.
Steps to reproduce:
after logging in to okta as an admin,
1. Go to the "Directory" tab
2. Then select "People"
3. Search and select a non-admin user for factor reset (the user must already have some factor enrolled)
4. From "More Actions" select "Reset Multifacto
Hi, @00ueuc93x4Cm8One20h1.5251321845916467E12 (Customer)
Thank you for posting on our Community page!
This is working as intended.
Please take a look here for more info: https://help.okta.com/en-us/content/topics/security/mfa/mfa-reset-users.htm
You could raise this as a feature request on our ideas.okta.com page if you need it to work differently.
Thank you for reaching out to our Community and have a great day!
Ask the experts about Okta Privileged Access
_____________________________________________________________________________
Community members help others by clicking Like or Select as Best on responses. Try it today.
_____________________________________________________________________________