Hi,
our auditor says, he is not ok with a logged-in user beeing able to delete a totp Device without entering his current totp token same time.
Is there an option to configure that to be required? (entering valid totp token while hitting the trash icon in the MFA Device view?)
Thx
Sven