Hello,
While testing our application in the staging phase, we required to log in multiple times.
with SMS MFA installed (we are using AWS SNS to send the MFA messages), we sometimes getting the following error:
“You have exceeded the maximum number of phone messaged per hour. wait a few minutes and try again”.
Thank you for posting this topic on the Auth0 Community!
I checked your tenant and saw the SMS provider is Auth0. Could you please go to Security → Multi-factor Auth → Phone Message, and confirm if you can see this warning?
“Your plan includes 100 SMS codes. Configure your SMS delivery provider to remove this limit.”
The Auth0 provider is for testing purposes. There is a maximum of 100 messages per tenant during the entire tenant’s lifetime. New codes are not received after reaching the 100 message limit.
To remove this limitation, please choose Twilio or Custom. This doc explains the details.
Thank you for your answer.
I checked the MFA setting but I see we use “Custom” as the delivery provider…
We have multiple tenants in our account… some of the indeed use Auth0 as the provider… but this error is happening in the provider with the Custom provider…