Enabling or disabling two-factor authentication for all users

You can enable or disable two-factor authentication for all users. If two-factor authentication is disabled for all users, you cannot enable two-factor authentication for local and LDAP users or LDAP groups. Two-factor authentication is disabled by default.

To enable or disable two-factor authentication for all users:

1. In the menu, go to the Users section.

   The user management page is displayed. The Users tab, which is selected by default, displays the table of users.

2. Select the Authentication security tab.
3. Do one of the following:
   • If you want to enable two-factor authentication for all users, select the Two-step authentication for all users check box. All users must complete two-factor authentication the next time a user logs in to the orchestrator web interface.
   • If you want to disable two-factor authentication for all users, clear the Two-step authentication for all users check box.

   This check box is selected by default.

Two-factor authentication is enabled or disabled for all users.