https://community.cisco.com/t5/apis/duo-auth-api-new-user-activation-code-timeout/m-p/4879371#M235 <DIV class="duo-migrated-content"><P>Hi Amy,</P> <P>Thanks for the info, I’m probably not 100% au fait with the right terminology yet. Hopefully this will better describe - the /enroll endpoint (<A href="https://duo.com/docs/authapi#/enroll" class="inline-onebox" rel="nofollow noopener">Auth API | Duo Security</A>) returns the following and the user has to scan the qr code before expiration is reached. but if expiration is reached there seems to be no api function to reset the expiration for the user - the only course of action seems to be to delete the user first and then call /enroll again - is that correct?</P> <P>Thanks a lot,</P> <P>Andy</P> <P>“stat”: “OK”,<BR /> “response”: {<BR /> “activation_barcode”: “<A href="https://api-eval.duosecurity.com/frame/qr?value=8LIRa5danrICkhHtkLxi-cKLu2DWzDYCmBwBHY2YzW5ZYnYaRxA" rel="nofollow noopener">https://■■■■■■■■■■■■■■■■■■■■■■■■/frame/qr?value=8LIRa5danrICkhHtkLxi-cKLu2DWzDYCmBwBHY2YzW5ZYnYaRxA</A>”,<BR /> “activation_code”: “duo://8LIRa5danrICkhHtkLxi-cKLu2DWzDYCmBwBHY2YzW5ZYnYaRxA”,<BR /> “expiration”: 1357020061,<BR /> “user_id”: “■■■■■■■■■■■■■■■■■■■■”,<BR /> “username”: “49c6c3097adb386048c84354d82ea63d”<BR /> }<BR /> })</P></DIV> Tue, 20 Aug 2019 19:49:56 GMT flippery_fish 2019-08-20T19:49:56Z https://community.cisco.com/t5/apis/duo-auth-api-new-user-activation-code-timeout/m-p/4879369#M233 <DIV class="duo-migrated-content"><P>Hi,</P> <P>When a new user is enrolled but they don’t respond before the activation code times out (i.e. enroll status returns invalid) as far as i can see the only course of action is to use the admin api to delete the user and enroll them again so that they get a new activation code.</P> <P>Is this correct or is there another way to generate a new activation code for a user that is already enrolled (but not activated)?</P> <P>Thanks a lot,</P> <P>Andy</P></DIV> Tue, 20 Aug 2019 11:59:39 GMT https://community.cisco.com/t5/apis/duo-auth-api-new-user-activation-code-timeout/m-p/4879369#M233 flippery_fish 2019-08-20T11:59:39Z https://community.cisco.com/t5/apis/duo-auth-api-new-user-activation-code-timeout/m-p/4879370#M234 <DIV class="duo-migrated-content"><P>Hi Andy,</P> <P>Just to clarify for the community, there is a <A href="https://help.duo.com/s/article/2260?language=en_US" rel="nofollow noopener">difference between Duo enrollment and activation</A>, which you can read more about in the knowledge base. Enrollment is the process of entering a user and authentication device in Duo, while activation is the process of syncing a smartphone or tablet with the Duo cloud service via the Duo Mobile app.</P> <P>To help us better answer your question, could you please clarify if you are talking about enrollment links sent via email to enroll users in Duo, or activation links sent to a device for Duo Mobile?</P></DIV> Tue, 20 Aug 2019 14:51:17 GMT https://community.cisco.com/t5/apis/duo-auth-api-new-user-activation-code-timeout/m-p/4879370#M234 Amy2 2019-08-20T14:51:17Z https://community.cisco.com/t5/apis/duo-auth-api-new-user-activation-code-timeout/m-p/4879371#M235 <DIV class="duo-migrated-content"><P>Hi Amy,</P> <P>Thanks for the info, I’m probably not 100% au fait with the right terminology yet. Hopefully this will better describe - the /enroll endpoint (<A href="https://duo.com/docs/authapi#/enroll" class="inline-onebox" rel="nofollow noopener">Auth API | Duo Security</A>) returns the following and the user has to scan the qr code before expiration is reached. but if expiration is reached there seems to be no api function to reset the expiration for the user - the only course of action seems to be to delete the user first and then call /enroll again - is that correct?</P> <P>Thanks a lot,</P> <P>Andy</P> <P>“stat”: “OK”,<BR /> “response”: {<BR /> “activation_barcode”: “<A href="https://api-eval.duosecurity.com/frame/qr?value=8LIRa5danrICkhHtkLxi-cKLu2DWzDYCmBwBHY2YzW5ZYnYaRxA" rel="nofollow noopener">https://■■■■■■■■■■■■■■■■■■■■■■■■/frame/qr?value=8LIRa5danrICkhHtkLxi-cKLu2DWzDYCmBwBHY2YzW5ZYnYaRxA</A>”,<BR /> “activation_code”: “duo://8LIRa5danrICkhHtkLxi-cKLu2DWzDYCmBwBHY2YzW5ZYnYaRxA”,<BR /> “expiration”: 1357020061,<BR /> “user_id”: “■■■■■■■■■■■■■■■■■■■■”,<BR /> “username”: “49c6c3097adb386048c84354d82ea63d”<BR /> }<BR /> })</P></DIV> Tue, 20 Aug 2019 19:49:56 GMT https://community.cisco.com/t5/apis/duo-auth-api-new-user-activation-code-timeout/m-p/4879371#M235 flippery_fish 2019-08-20T19:49:56Z https://community.cisco.com/t5/apis/duo-auth-api-new-user-activation-code-timeout/m-p/4879372#M236 <DIV class="duo-migrated-content"><P>Hi Andy,</P> <P>Ok great, thank you for the additional context! You will need to use the <A href="https://duo.com/docs/adminapi#create-activation-code" rel="nofollow noopener">Admin API to generate an activation URL</A>. You can read more about this in our Admin API docs under Phones&gt;Create Activation Code (I included a direct link for you as well). Duo generates a new <CODE>activation_url</CODE> each time <CODE>/admin/v1/phones/[phone_id]/activation_url</CODE> is called.</P> <P>Hope that helps!</P></DIV> Wed, 21 Aug 2019 12:56:26 GMT https://community.cisco.com/t5/apis/duo-auth-api-new-user-activation-code-timeout/m-p/4879372#M236 Amy2 2019-08-21T12:56:26Z