Self-service for owners and administrators
# Self-service for owners and administrators
If you are an owner or an administrator in an Asgardeo organization, go to the My Account portal (opens new window) to easily access and self-manage your information from anywhere.
You can perform the following activities on this portal:
- Update profile information
- Change password
- View linked social accounts
- View and revoke active sessions
# Access My Account portal
You can access the My Account portal using the following URL:
https://myaccount.asgardeo.io (opens new window)
You can also switch to My Account from the Asgardeo Console (opens new window). Click your profile icon as shown below and select My Account.
You are now automatically signed in to the portal.
# Update profile information
The user details displayed in your profile corresponds to the default attributes that are enabled for the organization.
To update your profile information via My Account:
Sign in to the My Account portal.
Click Personal Info to see the profile information.
If required, update the editable information.
# Change password
To change the current password via My Account, the user should follow these steps.
Sign in to the My Account portal.
Click Security > Change Password.
Click Change your password.
Enter the Current password and the New password.
Click Submit.
Alternatively, users can reset the password from the application login page.
Users onboarded from a read-only remote user store do not have the capability of changing their password through the My Account portal.
# Manage linked social accounts
Users can view social accounts linked to their profiles and if needed, remove them by following the steps below.
Sign in to the My Account portal.
Click Personal Info > External Logins.
To remove any of the linked accounts, click the trash icon next to it.
# Export profile information
Users can export profile information via the My Account portal as json
files.
Given below are the steps to follow.
Sign in to the My Account portal.
Click Personal Info > Export Profile.
Click Download the profile to export the user profile information.
Sample JSON file
This is a sample of the exported json
file with an admin user's profile information.
{
"user_profile": {
"accountState": "UNLOCKED",
"emailVerified": "true",
"country": "SriLanka",
"givenname": "firstname",
"created": "2021-04-07T15:07:58.001440Z",
"modified": "2023-04-25T04:31:05.838894Z",
"emailaddress": "[email protected]",
"userid": "36d2dd61-6e58-4b54-bfbe-f8621236c88b",
"username": "[email protected]",
"lastname": "Jerry"
},
"linked_accounts": [
{
"connection": "Google",
"connectionId": "xxxx",
"linkedAccountId": "xxxx",
"isExternalConnection": true
}
]
}
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
# Manage login sessions
Users can manage their own active sessions via My Account as follows:
Sign in to the My Account portal.
Click Security > Active Sessions. All the active login sessions of the user are listed.
Click Show more on a session to get more details.
To terminate sessions, users can do one of the following:
Click Terminate to terminate a selected session.
Click Terminate all on the upper-right to terminate all active sessions.
# Enroll TOTP for Asgardeo users
If you, as an administrator or an organization owner, want to register an authenticator app for generating OTP values, you can configure it via the My Account portal.
# Initial setup
Follow the steps given below to set up an authenticator app using My Account.
- In your My Account portal, go to Security > Additional Authentication.
- Click the + icon and scan the prompted QR code using an authenticator application.
- Enter the TOTP code obtained after scanning the QR code and click Verify.
# Regenerate the QR code
If you deleted the scanned QR from the authenticator app, follow the steps below to reconfigure it.
In your My Account portal, go to Security > Additional Authentication.
Click the eye icon (view) next to the authenticator app.
Click Regenerate to generate a new QR code.
Enter the TOTP code obtained after scanning the QR code and click Verify.
# Configure backup codes
When you have enabled at least one additional authentication method in the Additional Authentication section, authentication using backup codes will be available as a recovery option for MFA. Users can use these backup codes to log in when they cannot obtain the required MFA codes.
# Enable backup codes
Before you begin
You need to configure at least one additional authenticator from the My Account portal. See more information on configuring the authenticator app.
To enable backup codes:
- On the My Account portal, go to Security > Additional Authentication > Recovery Options.
- Click
+
to add backup codes. You will see a popup window with ten backup codes. Each backup code can be used only once. - Click Download Codes or Copy Codes and save the copied or downloaded backup codes securely, as the codes will only be shown once.
- After saving the backup codes, click Close.
The backup code configurations will not be applied to your active sessions by default, therefore it is recommended to terminate your active sessions.
# Regenerate backup codes
In case you have lost these backup codes or have used them all, follow the steps below to generate a new set of backup codes.
- On the My Account portal, go to Security > Additional Authentication > Recovery Options.
- Click on the refresh icon to regenerate the backup codes.
- On the confirmation window, click Regenerate to confirm your action. You will see a popup window with ten backup codes. Each backup code can be used only once.
- Click Download Codes or Copy Codes and save the copied or downloaded backup codes securely, as the codes will only be shown once.
- After saving the backup codes, click Close.
The backup code configurations will not be applied to your active sessions by default, therefore it is recommended to terminate your active sessions.
# Remove backup codes
To remove the backup codes:
- On the My Account portal, go to Security > Additional Authentication > Recovery Options.
- Click on the trash icon to remove the existing backup codes.
- On the confirmation window, click Remove to confirm your action.
The backup code configurations will not be applied to your active sessions by default, therefore it is recommended to terminate your active sessions.