Hi Jesus,
As Howard mentioned, I agree that Site Administrators need to be able to login using the manual authentication. Check their profile. There are no other authentication method options for these users.
So, it is a bad idea to completely disable manual logins. What if your token system breaks and you need to login in order to fix it?
My recommendation would be:
1. Use
CSS to hide the link to the login form
2. Install the Local Login plugin from
https://github.com/michael-milette/moodle-local_login
3. In the Moodle settings, enter the path to your new token login form
When you need to login as an administrator, you will still be able to by going to
https://yoursite.url/local/login thanks to the Local Login plugin.
The only down side is that, if you fail to login, you will be redirected to your token login page and will need to re-enter the local login
URL again to make another attempt. This should not be a problem if you bookmark the mew login page.
Another option might be to have your custom token login page display the normal login form if it does not receive a valid token. That way, you avoid the above-mentioned downside.
Hope you find this useful.
Best regards,
Michael Milette