Disable enterprise MFA for new users

ashish.yadav · January 24, 2022, 6:38pm

Hi,

How to disable all enterprise MFA features like “guardian, one-time passwords” for new users but keep them active for current users who are still using those features to log in?

I have the required MFA features enabled

My action looks like this:

exports.onExecutePostLogin = async (event, api) => {
  if (Array.isArray(event.user.multifactor) && event.user.multifactor.length > 0) {
      //any MFA policy for old users
      api.multifactor.enable("any");
  }
  else{
    //google-authenticator for new users
    api.multifactor.enable("google-authenticator");
  }
};

But can’t seem to get it to work.
Please advise.

Thanks!

SaqibHussain · February 1, 2022, 4:31pm

Hi @ashish.yadav

Thanks for getting in touch with us on Auth0 Community.

The action that you have looks good, please ensure that on the screen Security > “Multi-factor Auth” all original factors are still enabled and under “Define Policies” the section labelled “Require Multi-factor Auth” is set to Never.

I hope this helps.

All the best.

Topic		Replies	Views
MFA for login only Help mfa , phone-factor	6	610	February 12, 2024
MFA turn on off despite application - rules Help mfa	3	1184	October 25, 2022
Improvements in the Dashboard MFA Section Help mfa	3	7235	August 28, 2019
Disable MFA for enterprise connection Help mfa , mfa-api	2	1970	May 12, 2023
How to disable mfa for a particular user in nodejs Help mfa , one-time-password-otp-factor	5	1638	December 22, 2023

Disable enterprise MFA for new users

Related Topics