The default authentication method that admin users enter to log in from the System directory is Password (Local Directory). The default access policy includes a policy rule configured with Password (Local Directory) as a fallback method so that admins can log in to the Workspace ONE Access console and to the Workspace ONE portal.

When you create access policies for specific Web and desktop applications that the system admin role is entitled to, configure a rule in the policies to include Password (Local Directory) as a fallback authentication method. Otherwise, an admin cannot log in to the application.