Allow Customization of the MFA Remember Browser Period

chatura · January 4, 2023, 5:25am

Feature: Make default 30-day MFA Remember Browser Period Customizable.

Description: Currently you can either have users having to go through MFA checks every time they log in or once every 30 days.

It’s required for this number of days figure to be configurable.

Use-case: We are in the fintech domain and there are some trading institutions that require daily MFA requests. They would want to make sure that the MFA is needed only once a day.

When building a white-labelled product, it’s a value addition to have this figure configurable.

konrad.sopala · January 5, 2023, 1:02pm

Thank you for creating this feedback card! Make sure to upvote and I really hope it will attract as many votes as possible!

dco888 · March 16, 2023, 10:12am

Going further, we’d love to see the option for a session-based MFA, that also expires with inactivity timeout.

Right now, the configurable inactivity timeout applies to the entire login session. Best is to persist 1FA (long lived login) but prompt for MFA on inactivity timeout or backgrounded session etc.

konrad.sopala · March 16, 2023, 11:20am

Thank you for adding this piece of context @dco888 !

gilk · August 4, 2023, 8:43am

Any updates about this feature request?

Topic		Replies	Views
Reduce the amount of time of Remember browser setting in MFA for testing Knowledge Articles mfa-sms , settings , remember-browser	1	1755	November 10, 2022
How to change MFA-OTP default 30 days login time? Help	6	3160	May 27, 2021
MFA settings on the login Help	15	4164	March 20, 2020
Change Remember device for 30 days to 7 days Help mfa , phone-factor	1	1388	March 20, 2023
MFA - Is it possible to turn off "Remember Device for 30 days"? Help	3	3633	November 23, 2022

Allow Customization of the MFA Remember Browser Period

Related topics