Deactivate MFA for Specific Users

auth0.knowledge2 · March 25, 2025, 7:48pm

Overview

This article explains how to prevent a select group of users from being required to use Multifactor Authentication (MFA) using Actions.

Applies To

Multifactor Authentication (MFA)
Actions

Cause

Solution

The following action can prompt all users without a role to be exempt from MFA.

exports.onExecutePostLogin = async (event, api) => {

if (!event.authorization.roles.includes('bypass_mfa')) {

   api.multifactor.enable("any");



} else return

};

Another way to achieve this is to set a flag on the app_metadata of the user and then check if that flag is present or not inside the action that triggers MFA.

Topic		Replies	Views
How to disable MFA using actions? Get Help mfa , mfa-api	2	3431	February 17, 2023
Bypass Adaptive MFA using Actions Knowledge Articles multi-factor , actions , adaptive_mfa	1	1165	November 30, 2023
Skip MFA from Actions with api.multifactor.enable('none'); Knowledge Articles actions , adaptive_mfa , bypass-mfa	1	62	October 30, 2024
How to Disable MFA for Users Based on a Client Name or Client Id Knowledge Articles actions , mfa-factors , multifactor	1	807	February 9, 2024
Cannot bypass mfa in actions Get Help mfa , one-time-password-otp-factor	4	174	August 7, 2024

Deactivate MFA for Specific Users

Overview

Applies To

Cause

Solution

Related topics