I have a SPA application, and from what I can tell the http://auth0.com/oauth/grant-type/mfa-otp grant is not available when using Organizations. We want to build a way for our users to manage their MFA, but from the docs I don’t think this is possible without the mfa grant.
I tried to add the otp mfa grant type through the management api but I got an error message that it conflicted with organization login being required.
You can configure your application to always use the organization_id by always passing it into the /authorize request so every login is in the context of an organization.
If you wanted to keep the “Team members of organizations” selected then you may be able to solve the problem by having a separate app just for managing MFA that doesn’t use Organizations, once the user has passed MFA then return to your main application.