Decision making for MFA frequency per organization

mikhail.ilfirovych · October 20, 2022, 5:14pm

Hello,

I am looking for help with getting information about an user’s login during in Action.
I am new to Auth0 so I went over Google searches, this community and documentation but I still can’t find required info.

I have a requirement to enable different MFA settings for different organizations.
I am using Action to make a decision if MFA is enabled to a specific organization.
Example taken from
https://community.auth0.com/t/feature-request-different-mfa-policies-by-organization/71529/1
Each organization is going to have their own settings related to MFA, like

Lock an user after X failed mfa verifications
Do not ask for MFA if last successful login was within X time (hours, days, …)

Is there a way, maybe not with Action, to know when was a last successful login (including MFA verification) and how many times the user failed MFA verification?

Thanks

dan.woda · October 28, 2022, 4:50pm

Hi @mikhail.ilfirovych,

As you’ve noticed from the feature request linked, you can use Actions to control MFA behavior on a per-org basis. The user’s app_metadata can be a helpful place to store information like when the last successful login was, or when a user completed MFA.

If you have other ideas or requirements that aren’t currently possible, it would be helpful to add them to the feature request you linked.

Thanks!

Topic		Replies	Views
Enable MFA per org Get Help mfa , actions , organizations	2	2463	July 14, 2022
Feature-request: Different MFA policies by organization Product Feedback	7	5483	November 8, 2023
Request MFA from users after successful login Get Help mfa , mfa-api	3	377	March 19, 2025
Disable/skip MFA when user login through passwordless api call Get Help login-experience , new-universal-login-experience	2	574	November 28, 2023
Disable MFA for some logins for a user Get Help mfa , mfa-sms , adaptive-mfa	4	3725	November 18, 2024

Decision making for MFA frequency per organization

Related topics