Category: Admin persona


How does Enterprise recovery work?

The TaitWare Console allows Account and Customer Owners (see Owners documentation) to provision Recovery Users and Paper Keys. Owners may provision recovery users and paper keys for any Accounts or Customers that they own. Anybody who knows this paper key, has access to the recovery email, and is able to provide identity proofing to TraitWare […]


How to create an alias user (admin persona)?

Navigate to the Applications tab in the TraitWare console. Click on the blue button to add application Select Windows 10/11 MFA, a new page will appear Fill out the section under Application Name, select Save Changes on the bottom right Copy the Client ID and Client Secret Enable the Windows 10 application for newly-created alias user Ensure that everyone using the alias user is enabled […]


How to enable an alias user (admin perspective)?

In the TraitWare console, navigate to Customer Settings in the bottom left of the page Select Enable Alias User Add a name for the alias user, there is the option to add a logo if desired. Once completed click Save Changes in the bottom right corner Find out more here: Enabling and Creating an Alias User : […]


Requiring 3-factor authentication

By default, only one type of authentication is required (biometric or PhotoAuth) If you desire a higher level of security, 3-Factor Authentication (biometric and PhotoAuth) may be turned on for users Note that this is recommended for admin users with higher accesses 3-Factor can be applied to new or existing users **Randomize Photo Authentication is recommended for highest security measures


How to troubleshoot if a user can’t sign in?

If there is a message that the QR is not valid, please restart the TraitWare application. A session will timeout after 5 minutes of inactivity. If screen timeout is longer than 5 minutes, session will timeout without user knowledge QR code not showing on browser – please see list of supported browsers: Chrome (recommended) Firefox […]


How to reset to many failed attempts?

A user may get a failed authentication attempt by entering the wrong PhotoAuth sequence, if their device traits have changed too much, or in some cases (particularly with Samsung) on device update. Resetting Failed Login attempts will solve issues for a user who has forgotten a PhotoAuth sequence Resetting Session Traits will solve issues for a user […]


How to create an application?

First create a signing key for your application (SAML apps). Click Signing Keys under the Applications menu. Select Generate new Key Pair. Enter a Display Name. Select the lifetime of time you prefer for your key. NOTE: Owners will be notified by email of pending key expirations. The other options are fixed. Select Generate Key.


How to add a new device?

If a user loses or upgrades their device, the old device will need to be Deleted before you can Add a New Device Note that if they are using a temporary phone, this step will still need to be completed. Only one device can be assigned to a user for security purposes Once a new device is added, […]