We have turned on SMS and OTP based MFA in out application. We want to enforce SMS MFA during login on some condition. I know we can enforce MFA through actions but it asks user to select any MFA method enabled for the tenant. Is there a way, we could restrict SMS based MFA for certain users for login?
Hi @rajivk ,
Thank you for posting this topic on the Auth0 Community!
This FAQ described how to enforce MFA for a subset of users. To enable SMS, please replace any
with SMS
in the scripts.
Hope this helps!
Hi @lihua.zhang
We already tried it. Here is the error
I guess, valid values for provider are any
, duo
, guardian
or google-authenticator
. https://auth0.com/docs/secure/multi-factor-authentication/customize-mfa#use-rules
You are right @rajivk ! There is no option to set up the provider as sms only.