How to reset Two-Factor WebAuth

What will I cover in this post?

In my previous post I have described Two-Factor Authentication with WebAuth.

But what should you do when a user replaces WebAuthn device?

In this post, we will learn how to reset WebAuthn for a specific user. In addition, we will see how to revert the WebAuthn configuration for all users.

Reset WebAuthn for a specific user

If a user replaces WebAuthn device he /she will not be able to login and will see the following error:

Open the Users tab and then open the Credentials tab:

Delete the webauthn credentials:

During the next login the user will need to perform the WebAuthn registration once again and will be able to use a new WebAuthn device.

Revert the WebAuthn configuration for all users

If you want to disable Two-Factor WebAuth for all users you need revert Required Action and Browser Flow binding configurations.

Revert the Required Action configuration

Open the Authentication tab and then open the Required Actions tab:

Ensure Enabled checkbox is unchecked:

Revert the Browser Flow binding configuration

Open the Authentication tab and then open the Bindings tab:

Select the browser flow and click Save:

After these steps users will not required to use WebAuthn

Take-aways

You should now have a knowledge of how to reset WebAuthn

Stay tuned for next posts!