Hi @ineta
Welcome to the Auth0 Community!
How do you exactly enforce this flow on the user? Are you using passwordless authentication or do you enforce some kind of MFA for the user? Also, is this something you have configured within the Auth0 Dashboard or within your own custom page?
For example, I have configured passwordless authentication using email and I have enforced MFA using SMS through my tenant and the user was able to authenticate. I want to understand how did you exactly set up your flow and what are the steps that the user goes through so that I can understand its behaviour.
Kind Regards,
Nik