Use this operation to add or remove authentication methods for users in Self-Service Password Reset (SSPR).
Role Requirements
Procedure Scope: Administrators
Required Group Membership: Admin.Security
Handbook Reference
Package: Identity Security
Domain: SSPR Management
Modifies: Allowed QR Code MFA User(s), Allowed Mobile App Notification SSPR User(s), Allowed Mobile App Code SSPR User(s), Allowed Email SSPR User(s), Allowed Mobile Phone SSPR User(s), Allowed Office Phone SSPR User(s), Allowed Security Question SSPR User(s)
When to Perform this Operation
As Needed: Proactive or in Response to User/Security
Technical Description and Importance
Managing authentication methods for SSPR ensures that users have appropriate and secure methods available for password recovery. By controlling which users can use specific authentication methods, organizations can enforce security policies and limit exposure to less secure recovery options. This process is crucial for maintaining strong identity management and reducing the risk of unauthorized access. Regularly reviewing and updating authentication methods helps balance security with user accessibility, ensuring that recovery options remain both effective and secure.
Management Options
Add User SSPR Authentication Method:
Purpose
Assign an SSPR authentication method to a user.
Use Case
A new employee needs to register their mobile app for password recovery.
Remove User SSPR Authentication Method:
Purpose
Remove an authentication method from a user.
Use Case
A user no longer has access to a registered phone and needs the method removed.
| Operation | Action | Target |
| Add User SSPR Authentication Method | Addition | Allowed SSPR Methods (Mobile App Notification, Email OTP, SMS, etc.) |
| Remove User SSPR Authentication Method | Removal | Allowed SSPR Methods (Mobile App Notification, Email OTP, SMS, etc.) |
Add User SSPR Authentication Method
This operation adds an authentication method to a user for Self-Service Password Reset (SSPR).
1. SSPR Authentication Method User Addition
Remove User SSPR Authentication Method
This operation removes an authentication method from a user in SSPR.
1. SSPR Authentication Method User Removal
Need Assistance?
Reach out to your Customer Success Manager to discuss how a Sittadel cybersecurity analyst can assist in managing these tasks for you. New to our services? Inquire about arranging a consultation to explore optimizing your Azure environment for painless management.