How to enforce a single MFA for a user

rajivk · August 31, 2022, 7:32am

I think, i am not able to clarify scenario.

There are two separate thing

Could we enable multiple factors for the tenants?
My Observation: yes, we can. your this docs explain it.
NOTE: This has been clear to me. No further answer is required for this question.
Could a user configure multiple MFA like sms and otp for their account and choose anyone of them for the login?
For better explanation let’s take an example:
Tenant Setting: We have configured MFA and SMS from this article for the tenant, so a user should be able to choose anyone of them. We have also marked MFA always.
User - A user login first time after signup. Auth0 enforce to configure any one MFA from sms or otp. let’s say user decides to configure otp based MFA. After some days this user wants to configure sms(wants to keep otp based mfa) for his/her account so he/she could chose anyone at the time of login.
1. Is this scenario possible?
  My Observation: When i tried to configure sms based mfa using APIs when otp was already configured then it failed.
2. Have you tried this above scenario or is there any docs confirming the same?

is there any configuration that we needs to enable to support this scenario?

Topic		Replies	Views
Enrolling in More Than One MFA Factor Knowledge Articles mfa-enrollments , mfa-factors	1	1130	September 8, 2023
How can I force user to configure least 2 MFA methods or specific MFA methods Get Help mfa , mfa-api	4	541	March 22, 2024
Can I configure MFA for a particular application not for all? Get Help mfa , one-time-password-otp-factor	6	1741	April 28, 2023
Different UI for MFA Get Help mfa , one-time-password-otp-factor	2	176	May 30, 2025
Enforce sms as MFA on certain condition Get Help mfa-sms	4	2435	August 24, 2022