Enhanced MFA Security Controls

ben.levy · August 17, 2024, 11:46am

Feature Request: Enhanced MFA Security Controls

We propose implementing additional security measures for the Multi-Factor Authentication (MFA) flow to improve account protection and prevent unauthorized access attempts.

Proposed Features

Session Termination After Multiple MFA Failures

Automatically terminate the user’s session after a configurable number of failed MFA attempts (e.g., 5 failures).
This prevents further attempts on the same session, requiring the user to start the authentication process from the beginning.

Account Lockout After Excessive MFA Failures

Temporarily block the user account after a set number of MFA failures across multiple sessions (e.g., 10 failures within 30 minutes).
Implement a configurable lockout duration (e.g., 30 minutes, 1 hour, 24 hours).
Provide options for manual account unlock by administrators or automatic unlock after a set period.

Topic		Replies	Views
Decision making for MFA frequency per organization Help lock , mfa , login , failed-login	2	1638	October 28, 2022
MFA Brute force protection Knowledge Articles	1	1106	May 29, 2023
Additional factors are available for Dashboard Admins using MFA to prevent account lock-outs Announcements auth0 , mfa , dashboard-admins	2	4663	October 15, 2020
Is MFA feature available for Password Reset flow Help login-experience , reset-password-prompt-new-experience	1	366	January 30, 2024
Login loop after enabling MFA Help	3	1897	November 9, 2022

Enhanced MFA Security Controls

Feature Request: Enhanced MFA Security Controls

Proposed Features

Related Topics