I am trying to set the security token of an API user (with insufficient privileges to do just about anything in the GUI, including enter the "Personal Information" section where users typically reset their own security token). Furthermore, their security token appears to have never been set in the past (as reset password emails do not contain the security token).
SSO is not enabled for the org and IP Restrictions are not enabled for the Profile.
Given that I have admin access, how do I enable the security token for another user's profile?
Best Answer
You cannot reset the token directly, as the administrator. However, administrators have ways to make this happen. As an administrator, you could:
setPassword
on the user, thus giving you the ability to log in as them and then reset their password.Note that in all cases, it will be sent to the email address on file; there's no way to show the token in the UI. In most cases, the administrator has to destroy the user's password as part of the reset process. Only by logging in as the user legitimately (either login access or with the user's password) can they avoid destroying the existing password.