how can I change the mfa device for a user and let the user set this new configuration on next login?
I believe that OTP devices with Teleport are “set and forget”, so in order to configure a different OTP device, you would need to delete the user (
tctl users rm username) and then re-add them again.
We do have an outstanding feature request on Github for this - https://github.com/gravitational/teleport/issues/2280. Please do comment there to voice your interest if this is a feature that you would like to see implemented.
This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.