I’m getting issue when trying to re-enrol user MFA after resetting his/her MFA.
It works when re-enrolling the user into authenticator OTP but it keeps on throwing the following error message when I tried with SMS OTP:
Seems that you have already enrolled, try logging in again from the application.
Steps to reproduce:
User is enrolled for OTP
email_verified attribute is set to true
Perform Reset MFA on the Auth0 Management Page
Create new MFA Enrollment ticket using the following command:
management.guardian.tickets.create({
user_id: ‘{userId}’,
send_mail: true
});
User click the link and select SMS as the OTP.
Any idea what could be the issue? Would the mobile number require to be unique that no user would share the same mobile number?
Observation: Check OTP, Email, and SMS for MFA in dashboard
Reset MFA for user with verified email
Login as normal through the universal login page
OTP prompt shows up, but click “I prefer SMS”
Add phone number
Says I’m already enrolled and I should login to the app
If I login to the app, I’m going to get prompted with the MFA setup. If I use OTP it works ok. I just wanted the option for my user to be able to use all 3 options if he’d like.
Update: It isn’t working because I’m using classical login page. I think if you use the new login page and enable the 3 of them, it will work. Not sure because I haven’t tested it out.