How do I force a specific MFA factor?

tatebosler · September 4, 2019, 4:07pm

I have a bunch of users that are currently using SMS for MFA, but I want to begin migrating them over to an OTP app. I would like to control the migration and only enable OTP for some internal users at first before making it available to everyone.

I know it’s possible to force a specific MFA provider using rules, but can rules (or some other configuration in the Auth0 dashboard) be used to force a specific MFA factor within Guardian?

mathiasconradt · September 5, 2019, 8:55am

In the rule, you can set a MFA factor via provider option, or any if you want to allow any provider:

    context.multifactor = {
      provider: 'any'
    };

system · September 20, 2019, 8:55am

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Different MFA Factor Options Per Organization Help mfa , organizations	7	3215	November 9, 2023
Specify Specific MFA Factor Help mfa , mfa-api	2	1148	May 5, 2023
Multifactor with both SMS and One-Time Password (Google Auth) Help mfa , 2fa	4	4278	May 1, 2019
Enforce MFA factor type based on user Role Help mfa , mfa-api	1	506	January 11, 2024
Enforce MFA with specific factors using Actions Help mfa , policies-configuration	7	2308	January 8, 2024

How do I force a specific MFA factor?

Related Topics