remove_mfa_exempt_users
This command removes users from the exempt list for multi-factor authentication.
After a user is removed from the exempt list, Guardium will request secondary authentication to log in.
This API is available in Guardium V11.2 and later.
REST API syntax
This API is available as a REST service with the
DELETE
method. Call this API as follows:
DELETE https://[Guardium hostname or IP address]:8443/restAPI/configure_mfa
GuardAPI syntax
remove_mfa_exempt_users parameter=value
Parameters
Parameter | Value type | Description |
---|---|---|
exemptUsers | String | A comma-separated list of one or more users to remove from the list of exempt users. |
mfaType | String | Required. The authentication type. For valid values, call
remove_mfa_exempt_users from the command line with
--help=true .
|
api_target_host | String |
Specifies the target hosts where the API executes. Valid values:
IP addresses must conform to the IP mode of your network. For dual IP mode, use the same IP protocol with which the managed unit is registered with the central manager. For example, if the registration uses IPv6, specify an IPv6 address. The hostname is independent of IP mode and can be used with any mode. |
Examples
grdapi remove_mfa_exempt_users exemptUsers="Hadrian,Fred" mfaType=DUO