You typically do not need to re-register a user for TOTP.
About this task
You typically do not need to re-register a user for TOTP unless there is a problem with the
device, the security of the shared secret is in question, and so forth.
Procedure
-
Deactivate the user for TOTP:
ALU [Login ID] MFA(FACTOR(AZFTOTP1)
NOACTIVE)
-
Delete the TOTP AZFTOTP1 tags associated with the
account:
ALU [Login ID] MFA(FACTOR(AZFTOTP1)
NOACTIVE NOTAGS)
-
Enter the following command to set the TOTP registration
state for the user to OPEN. (Case is sensitive for OPEN.)
ALU [Login ID] MFA(FACTOR(AZFTOTP1)
TAGS(REGSTATE:OPEN))
-
Follow the steps in Configure TOTP for users or Configure TOTP for users, as appropriate.