The administrator or help-desk user can manage secret questions:
- See the status of secret questions (valid, blocked)
- Delete answers
- Unblock blocked answers (answers are blocked after too many wrong answers have been provided)
The administrator/help-desk employee may verify answers when Allow Admin Anser Check is enabled in the configuration in the Secret Questions Settings. This is, for example, useful to identify a user on the phone.
- Verify answers by administrator/help-desk employee:
Risks of checking answers by the administrator or help-desk employee
Note that having answers checked by the administrator or help-desk employee bears the following risks:
- The administrator learns the secret answers to questions.
- Identification of users using secret questions is not secure.