One Time Passcode (OTP) Access

An OTP (one-time passcode) allows administrators of the SSO Portal to access their accounts if they are locked out due to incorrect configuration of a 3rd party IdP. An administrator is any user that is associated with the ib-all-access-admin or ib-sso-sso-admin user groups and is able to configure 3rd party IdP. If an administrator cannot log in to the SSO Portal after a 3rd Party IdP has been configured, they may obtain an OTP and log back into the SSO Portal to fix the configuration.

To obtain an OTP, complete the following:

1. Navigate to the IdP bypass sign-in URL at https://sso.infoblox.com/idpbypass hosted by the SSO Portal.
   
2. In the SSO Portal dialog, enter the admin's email address and click Email One Time Passcode (OTP).
   Note the following:
   
1. If the email address is for an SSO portal admin, an OTP email is sent (the code is only valid for 10 minutes).
2. This email can only be sent every 10 minutes.
3. If the user does not meet the requirements for receiving an OTP email, the email will not be sent, but the dialog will not display an error message.
3. Once you click Email One Time Passcode (OTP), an email is sent to the admin email address you entered.
4. Open the email and copy the OTP.
5. Go back to the SSO Portal dialog box and enter the OTP in the Enter OTP field.
   
6. Click Sign In.
7. You can now log in to your account and you are given access to the SSO Portal for 30 minutes.
8. In the SSO Portal, click Authentication -> 3rd Party IdP tab.
9. Click Deactivate to deactivate the 3rd party IdP configuration, which prevents you from logging in normally.