How to create an admin role to manage 2-Step Verification backup codes

You may need to delegate admin permissions to a user in order to manage the backup codes for 2-Step Verification or other security settings for users.

• Admin roles
• Security settings

You can create a custom admin role and assign the User Security Management privilege, which allows you to see and reset backup codes for non-admin users. You may create a Custom admin role following these steps:

1. Sign in to the Admin console.
2. Navigate to Main Menu > Account > Admin roles.
3. Click Create new role.
4. Enter a name and, optionally, a description for the role and click Continue.
5. From the Privilege Name list, check boxes to select each privilege that you want users with this role to have, in this case for this purpose you need User Security Management.
6. Click Continue.
7. Review the privileges and click Create Role.
   • For further information check this article: Create, edit, and delete custom admin roles.
8. Assign the new Custom admin role to the user who needs to have this access.
9. Go back to the Main Menu > Directory > Users.
10. Find the user in the list.
11. Click the user’s name to open their account page.
12. Scroll down and click Admin roles and privileges.
13. Next to the custom role, click the switch to assign it.
14. Click Save.

Note: Please keep in mind that delegated admins, not Super Admins that have just specific admin privileges, can only perform the actions for non-admin users, and only Super Admins can modify these settings or any other settings for delegated admins or other Super Admins.