Once enrolled in 2FA, users will have to provide Credentials each time they login VSA. The TOTP-entry step can be skipped, if users choose to remember their device(s) for the time defined at the tenant level.
If a user fails 2FA verification the number of attempts defined by the Lockout Settings at the tenant level, the user’s account will be locked out.
If a user fails 2FA verification cycle (entering the credentials and the Time-based, One-Time Code) the number of times defined by the tenant Lockout Policy, the User Account will be locked out. To unlock it, please contact a System Role User in your tenant.
Note: The Lockout will occur, if user enters incorrect values the number of times that exceeds the number of attempts defined by Lockout Settings in either the login page or TOTP-entry screens.
Note: Users with active AAoD accounts and AAoD Module enabled for their tenant will be able to continue using the same authentication procedure.
