Excluding accounts from two-step verification

You can exclude user accounts from two-step verification if you have the Modify object ACLs right in the General features: User permissions functional area.

If a user account is excluded from the list of two-step verification for all users, this user does not have to use two-step verification.

Excluding accounts from two-step verification can be necessary for service accounts that cannot pass the security code during authentication.

If you want to exclude some user accounts from two-step verification:

1. You must perform Microsoft Active Directory domain controller polling in order to refresh the list of Administration Server users, if you want to exclude Active Directory accounts.
2. In the main menu, click the settings icon () next to the name of the required Administration Server.

   The Administration Server properties window opens.

3. On the Authentication security tab of the properties window, in the two-step verification exclusions table click the Add button.
4. In the window that opens:
   1. Select the user accounts that you want to exclude.
   2. Click the OK button.

The selected user accounts are excluded from two-step verification.

See also: Scenario: Configuring two-step verification for all users About two-step verification

Page top