Our users can already configure their MFA method (through text or authenticator). But how do we allow them to configure multiple MFA methods?
Looks like I can’t edit the post.
But further context:
We are currently using the [Auth0 Management API v2](https://Create MFA ticket API) to generate a link for the users where they can configure their MFA.
Once they have configured at least one MFA, the link shows this:
Preventing users from configuring more than one MFA
(post deleted by author)
For anyone else that is curious on how to do this:
This is currently not possible using Auth0’s api/v2/guardian/enrollments/ticket
API. That API only works if you haven’t configured any MFA yet, because it prevents you from registering multiple MFAs.
We had to create our own UI and API to support configuration of multiple MFA methods.
- we created another React app with a specific audience (“/mfa”) and scopes (“enroll” has to be there) to get an MFA token.
- use that MFA token to call Auth0’s APIs to enroll a new MFA and verify that MFA.
Docs here: Enroll and Challenge SMS and Voice Authenticators
Overall there could have been a better guide for this ++ I really think it would be easier to support this using Auth0’s guardian/enrollments/ticket
API (just need to remove the restriction of “MFA has already been enabled”)